home

DUMETER.EXE

DU Meter

Hagel Technologies Ltd

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘DU Meter’.
Publisher:
Hagel Technologies Ltd  (signed and verified)

Product:
DU Meter

Version:
3.50 Build R2822

MD5:
6b870b3d73e6e9317aadad84c4d1b31b

SHA-1:
2bde9a49637416a7afc9f11737ed8da4b84bd59e

SHA-256:
a038ac473491b1051319b63f66669570281da42151e977fbf2fb7b7e2795b19e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 6:54:17 PM UTC  (today)

File size:
1.5 MB (1,582,616 bytes)

Product version:
3.50 Build R2822

Copyright:
Copyright © 1997-2006 Hagel Technologies Ltd.

Original file name:
DUMETER.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Hagel Technologies Ltd

Authority:
GeoTrust Inc.

Valid from:
11/7/2006 4:25:05 AM

Valid to:
11/21/2007 4:25:05 AM

Subject:
E=support@hageltech.com, CN=Hagel Technologies Ltd, OU=Email and phone validated only., OU=Phone Validation - 1(250) 863-3452, OU=See Public S/MIME CPS www.geotrust.com/resources/CPS., OU=CPS terms incorporated by reference liability limited.

Issuer:
CN=GeoTrust True Credentials CA 2, O=GeoTrust Inc., C=US

Serial number:
105C5F

File PE Metadata
Compilation timestamp:
6/20/1992 4:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:Rg4ZfBF0SY/tkWQxHez7WmQh0ZTOiRWY6AftugILnU2DGM4Ktb8uT:TphW2uV6Acd4Q

Entry address:
0x1162AC

Entry point:
55, 8B, EC, 83, C4, E4, 53, 56, 33, C0, 89, 45, E4, 89, 45, EC, 89, 45, E8, B8, 64, 42, 51, 00, E8, B7, 16, EF, FF, 8B, 1D, 8C, DB, 51, 00, 8B, 35, 1C, DB, 51, 00, 33, C0, 55, 68, C5, 64, 51, 00, 64, FF, 30, 64, 89, 20, 8B, 03, E8, 12, 4A, F6, FF, 8B, 03, BA, DC, 64, 51, 00, E8, 86, 44, F6, FF, 8D, 55, E8, 33, C0, E8, 00, CF, EE, FF, 8B, 45, E8, 8D, 4D, EC, BA, F0, 64, 51, 00, E8, A4, 4C, EF, FF, 8B, 55, EC, 8B, 03, 83, C0, 50, E8, 33, EE, EE, FF, 8B, 06, E8, 48, 88, FA, FF, 84, C0, 0F, 84, 7E, 01, 00, 00...
 
[+]

Entropy:
6.6207

Developed / compiled with:
Microsoft Visual C++

Code size:
1.1 MB (1,134,592 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
DU Meter

Command:
\192.168.0.4\it\software\internet\du meter\dumeter.exe


Scan DUMETER.EXE - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.