home

mog.exe

Mx One Antivirus

Ldc

This is a setup program which is used to install the application. The file has been seen being downloaded from update.mxone.net.
Publisher:
Ldc

Product:
Mx One Antivirus

Version:
4.05

MD5:
b8d4627ae3e1295abdcbfac07de01cb0

SHA-1:
a39aba6cce92ed2cd3bc07d5f374b473ac699493

SHA-256:
fd2f955f6dc959ceb7924489787a1306c560faa9b63ed75a0595bbf5f24d03a2

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 2:12:52 AM UTC  (today)

Scan engine
Detection
Engine version

Qihoo 360 Security
HEUR/QVM17.0.Malware.Gen
1.0.0.1077

File size:
370.5 KB (379,392 bytes)

Product version:
4.05

Copyright:
Red Mx ( Martin Malagon )

Trademarks:
http://www.LdcMx.info http://www.MxOne.net

Original file name:
mog.exe

File type:
Executable application (Win32 EXE)

Language:
Spanish

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\mog.exe

File PE Metadata
Compilation timestamp:
1/14/2016 10:10:48 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:LkIrIbWEx5enTsdSLn0ttpNCl4evW4LpR/MDKHuXl5ouwgo4bIY/g+iLzeI:Lk+UWEx5egOn0tXAW43rekuwghI36

Entry address:
0x3BF8

Entry point:
B8, EC, 2E, 58, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 60, 34, 94, 1D, 75, E0, CF, 78, 44, DC, 20, 06, 48, 81, DE, 97, 25, 33, 11, 39, E6, A4, 6A, 09, C2, DB, 5E, E0, 5D, 51, 4C, 4A, A3, C9, D2, C4, FB, 98, F9, DF, F4, 8B, 92, 08, EA, 80, 4A, 0E, 16, D3, 1F, 7A, 69, 89, 49, 61, 01, A5, B4, 19, 15, 1D, 36, D2, 73, 2F, 0B, 32, EE, C6, 1E, 83, EA, 73, 57, 1E, A0, F7, 44, FC, 5C, CF, E1, E9, E6, 94, 3B, B4, 1A, 86, E6, CA, 6D...
 
[+]

Packer / compiler:
PECompact v2

Code size:
1.5 MB (1,527,808 bytes)

The file mog.exe has been seen being distributed by the following URL.

http://update.mxone.net/mog.exe

Scan mog.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.