» DUMETERSVC.EXE
Overview
Analysis
File Details
Behaviors (1)

DUMETERSVC.EXE

DU Meter

Hagel Technologies Ltd

It runs as a separate (within the context of its own process) windows Service named “DU Meter Service”.

File name:

DUMETERSVC.EXE

Publisher:

Hagel Technologies Ltd (signed and verified)

Product:

DU Meter

Description:

DU Meter Service

Version:

4.01 Build R3076

MD5:

90524616be6c6547e29986c177117baa

SHA-1:

4cbba724700f2a0420c2b7ac3c4b335844a7ee08

SHA-256:

f57edd765fabcb6c0db45a66d9a873d757708a347852405b062f8ab06c3729d7

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/20/2024 2:25:27 AM UTC (today)

Scan engine

Detection

Engine version

IKARUS anti.virus

Backdoor.Win32.Dokstormac

t3scan.2.0.9.0

File size:

1.3 MB (1,386,008 bytes)

Product version:

4.01 Build R3076

Original file name:

DUMETERSVC.EXE

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\du meter\dumetersvc.exe

Digital Signature

Signed by:

Hagel Technologies Ltd

Authority:

GeoTrust Inc.

Valid from:

2/14/2008 7:42:27 AM

Valid to:

2/27/2009 7:42:27 AM

Subject:

E=support@hageltech.com, CN=Hagel Technologies Ltd, OU=Email and phone validated only., OU=Phone Validation - 1(250) 869-8197, OU=See Public S/MIME CPS www.geotrust.com/resources/CPS., OU=CPS terms incorporated by reference liability limited.

Issuer:

CN=GeoTrust True Credentials CA 2, O=GeoTrust Inc., C=US

Serial number:

1089B1

File PE Metadata

Compilation timestamp:

6/9/2008 12:43:35 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x12F7A4

Entry point:

55, 8B, EC, 83, C4, F0, 53, B8, E0, A9, 52, 00, E8, A3, 84, ED, FF, A1, BC, 70, 53, 00, 8B, 00, 8B, 10, FF, 52, 34, 8B, 0D, 1C, 6D, 53, 00, A1, BC, 70, 53, 00, 8B, 00, 8B, 15, D4, 62, 52, 00, 8B, 18, FF, 53, 30, A1, BC, 70, 53, 00, 8B, 00, 8B, 10, FF, 52, 38, 5B, E8, 09, 5A, ED, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

6.4859

Developed / compiled with:

Microsoft Visual C++

Code size:

1.2 MB (1,235,456 bytes)

Service

Display name:

DU Meter Service

Service name:

DUMeterSvc

Description:

DU Meter Service collects network traffic statistics

Type:

Win32OwnProcess

Depends on:

LanmanWorkstation

Scan DUMETERSVC.EXE - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.