home

AndServMgr.exe

DuOS

American Megatrends Inc.

It runs as a separate (within the context of its own process) windows Service named “AndServMgr”.
Publisher:
American Megatrends Inc.  (signed and verified)

Product:
DuOS

Description:
AndServMgr

Version:
1.0.11.6157

MD5:
cde7074912d2eeb58990cd46b399fe50

SHA-1:
bc5331ddc6e133df94d80426a6bcc40fc7ad3ea2

SHA-256:
efd0adb94810d5f1baced4fc43740d28d7a04c21e97220a9c2c9be4c69e4721c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 11:57:04 AM UTC  (today)

File size:
52.3 KB (53,528 bytes)

Product version:
1.0.11.6157

Copyright:
DuOS ® Copyright © 2013-2014 American Megatrends Inc.

Original file name:
AndServMgr.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\ami\duos\andservmgr.exe

Digital Signature
Signed by:
American Megatrends Inc.

Authority:
VeriSign, Inc.

Valid from:
2/12/2013 5:30:00 AM

Valid to:
2/12/2015 5:29:59 AM

Subject:
CN=American Megatrends Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=American Megatrends Inc., L=Norcross, S=Georgia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
372C81C75EB7FD87BDFFF3C2AC0A3D5D

File PE Metadata
Compilation timestamp:
12/4/2014 3:33:14 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
768:ExDOugBArputPhhzRHLSu4y3n4DARcwN78SqSdOl3z/lr2i:EguAArput5hzNWuzoMRJ1tOJ/ln

Entry address:
0x6828

Entry point:
E8, 8C, 05, 00, 00, E9, B3, FD, FF, FF, FF, 25, BC, 81, 40, 00, 6A, 14, 68, 48, 90, 40, 00, E8, CC, 04, 00, 00, FF, 35, 68, C6, 40, 00, 8B, 35, A8, 80, 40, 00, FF, D6, 89, 45, E4, 83, F8, FF, 75, 0C, FF, 75, 08, FF, 15, 94, 81, 40, 00, 59, EB, 64, 6A, 08, E8, F3, 05, 00, 00, 59, 83, 65, FC, 00, FF, 35, 68, C6, 40, 00, FF, D6, 89, 45, E4, FF, 35, 64, C6, 40, 00, FF, D6, 89, 45, E0, 8D, 45, E0, 50, 8D, 45, E4, 50, FF, 75, 08, 8B, 35, A4, 80, 40, 00, FF, D6, 50, E8, B9, 05, 00, 00, 83, C4, 0C, 89, 45, DC, FF...
 
[+]

Entropy:
6.3507

Code size:
27 KB (27,648 bytes)

Service
Display name:
AndServMgr

Description:
DuOS Service Manager

Type:
Win32OwnProcess


Scan AndServMgr.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.