» Gaming Mouse.exe
Overview
Analysis
File Details
Behaviors (1)

Gaming Mouse.exe

Gaming Mouse

Areson Technology

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Areson Gaming Mouse 5’.

File name:

Gaming Mouse.exe

Publisher:

Areson (signed by Areson Technology)

Product:

Gaming Mouse

Version:

1.0.0.1

MD5:

73be2bca7cf59e1ddbf6f041b1b3f652

SHA-1:

84dbf9890439fabb619bcd929916b44bdcae25ea

SHA-256:

053001f32c7df0e28fa43083e7959f3435d8f99b653bb551c991bf7b29116c81

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/26/2024 4:11:35 AM UTC (today)

File size:

6.2 MB (6,460,240 bytes)

Product version:

1.0.0.1

Original file name:

Gaming Mouse.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\areson gaming mouse\gaming mouse.exe

Digital Signature

Signed by:

Areson Technology

Authority:

VeriSign, Inc.

Valid from:

9/5/2012 9:00:00 AM

Valid to:

9/6/2015 8:59:59 AM

Subject:

CN=Areson Technology, OU=R&D, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Areson Technology, L=New Taipei City, S=Taiwan, C=TW

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

11C80B1F9027483C59F1799F3A57FC6D

File PE Metadata

Compilation timestamp:

10/20/2014 9:00:01 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

196608:LiwJ2VTt0ibaSg+IrSXzk7FLOyomFHKnPV:+6It0Sg+IrYzOFQ

Entry address:

0x78FF3

Entry point:

E8, B5, 5E, 00, 00, E9, 7F, FE, FF, FF, CC, 3B, 0D, E0, 1E, 4C, 00, 75, 02, F3, C3, E9, C7, 17, 00, 00, 56, 6A, 04, 6A, 20, E8, 88, 63, 00, 00, 59, 59, 8B, F0, 56, FF, 15, 18, 92, 49, 00, A3, 60, 63, 4D, 00, A3, 5C, 63, 4D, 00, 85, F6, 75, 05, 6A, 18, 58, 5E, C3, 83, 26, 00, 33, C0, 5E, C3, 6A, 0C, 68, 70, 16, 4B, 00, E8, F8, 27, 00, 00, E8, E8, 4B, 00, 00, 83, 65, FC, 00, FF, 75, 08, E8, 23, 00, 00, 00, 59, 8B, F0, 89, 75, E4, C7, 45, FC, FE, FF, FF, FF, E8, 0B, 00, 00, 00, 8B, C6, E8, 13, 28, 00, 00, C3... 
[+]

Entropy:

7.5411

Code size:

606.5 KB (621,056 bytes)

Startup File (All Users Run)

Registry location:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:

Areson Gaming Mouse 5

Command:

"C:\Program Files\areson gaming mouse\gaming mouse.exe" \hide

Scan Gaming Mouse.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.