home

CmdRegistration.exe

Max Secure Software Command-Line Registration Utility

Max Secure Software India Pvt. Ltd.

The application CmdRegistration.exe by Max Secure Software India Pvt has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Max Secure Software  (signed by Max Secure Software India Pvt. Ltd.)

Product:
Max Secure Software Command-Line Registration Utility

Version:
1.0.0.1

MD5:
c9d2d4777d69010ad5f463244fd8ff74

SHA-1:
e76a89803585c26d4310ec59d3828e07a03e1fd7

SHA-256:
57af33726f8791095092bf9e178142a024859d0c22ae3da75b5120bfadbc133b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 8:06:57 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.MaxSecure.Optional.Meta (L)
16.2.13.10

File size:
464.5 KB (475,616 bytes)

Product version:
1.0.0.1

Copyright:
(c) Max Secure Software. All rights reserved.

Trademarks:
Max Secure Software

Original file name:
CmdRegistration.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\max secure total security\tools\cmdregistration.exe

Digital Signature
Signed by:
Max Secure Software India Pvt. Ltd.

Authority:
GlobalSign nv-sa

Valid from:
4/2/2012 1:30:08 PM

Valid to:
7/23/2014 10:27:41 PM

Subject:
E=tech@maxpcsecure.com, CN=Max Secure Software India Pvt. Ltd., O=Max Secure Software India Pvt. Ltd., L=pune, S=MH, C=IN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11216A69882C6D7835A9F4F1D6DCB7AC9C32

File PE Metadata
Compilation timestamp:
2/11/2014 10:42:12 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
9.0

CTPH (ssdeep):
12288:dRhzBYtEbyPhEpQ7AJ8DaS8+FTpmR7KU5kahK:HY1z74QTpmRuUdI

Entry address:
0x2A6F6

Entry point:
E8, 15, B7, 00, 00, E9, A5, FE, FF, FF, 6A, 10, 68, 08, 0F, 46, 00, E8, 88, 23, 00, 00, 8B, 5D, 08, 85, DB, 75, 0E, FF, 75, 0C, E8, 11, F7, FF, FF, 59, E9, CC, 01, 00, 00, 8B, 75, 0C, 85, F6, 75, 0C, 53, E8, 69, CD, FF, FF, 59, E9, B7, 01, 00, 00, 83, 3D, 7C, D5, 46, 00, 03, 0F, 85, 93, 01, 00, 00, 33, FF, 89, 7D, E4, 83, FE, E0, 0F, 87, 8A, 01, 00, 00, 6A, 04, E8, F1, 40, 00, 00, 59, 89, 7D, FC, 53, E8, 1A, 41, 00, 00, 59, 89, 45, E0, 3B, C7, 0F, 84, 9E, 00, 00, 00, 3B, 35, 6C, D5, 46, 00, 77, 49, 56, 53...
 
[+]

Entropy:
6.3823

Code size:
330 KB (337,920 bytes)

Remove CmdRegistration.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.