home

mog.exe

Mx One Antivirus

Ldc

This is a setup program which is used to install the application. The file has been seen being downloaded from update.mxone.net.
Publisher:
Ldc

Product:
Mx One Antivirus

Version:
4.05

MD5:
1a6626dff9ba0a0801d6b62530f115dc

SHA-1:
d81e258d49d75ccc872717f7cc04009c2c76ad98

SHA-256:
31de47c49764965dbde56909dc00253acdf320c88d52028172b1ca36099e4a2c

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/24/2024 2:01:06 AM UTC  (today)

Scan engine
Detection
Engine version

Zillya! Antivirus
Trojan.Agent.Win32.584809
2.0.0.2496

File size:
370.5 KB (379,392 bytes)

Product version:
4.05

Copyright:
Red Mx ( Martin Malagon )

Trademarks:
http://www.LdcMx.info http://www.MxOne.net

Original file name:
mog.exe

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
10/3/2015 2:33:28 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:BeLacnK9Ejk/Debkv7KCLzDM/41arJAgDiwVHebIZjrDAcpTXichwevRcCFtAIY:BeucPIFGCLU/4q+1bGjrBiD8FtA

Entry address:
0x3BF8

Entry point:
B8, EC, 1E, 58, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, BC, 41, 77, 92, 0C, CD, 09, 39, CA, 3A, 58, B9, 2D, EB, E0, 9C, 80, EB, 29, C8, D7, 48, 56, FD, B9, 5F, DE, 80, A3, 1F, EE, AD, 9B, 58, 99, AA, 39, 25, 58, 5F, 30, 3B, AF, D5, 3F, E0, 69, 60, E3, 76, B5, A8, B3, 66, B8, A4, 0A, 1A, 0E, C9, ED, BE, ED, C9, 8A, 1A, 75, 3B, 86, 4B, 9B, 70, 56, 93, F5, 88, 9D, 37, 06, BE, 53, AA, 62, 52, D2, BE, 33, 21, 51, 55, 0C, 45, E3...
 
[+]

Entropy:
7.9938

Packer / compiler:
PECompact v2

Code size:
1.5 MB (1,523,712 bytes)

The file mog.exe has been seen being distributed by the following URL.

http://update.mxone.net/mog.exe

Scan mog.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.