» Gaming Mouse.exe
Overview
Analysis
File Details
Behaviors (1)

Gaming Mouse.exe

Gaming Mouse

Areson Technology

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘AFX AFXM0317 Configuration’.

File name:

Gaming Mouse.exe

Publisher:

Areson Technology (signed and verified)

Product:

Gaming Mouse

Version:

1.0.0.0

MD5:

9f1cd36e35ad8d1d7f4cf4567a526143

SHA-1:

9b8930fd0e8822933d170983787c11d40181709e

SHA-256:

46ce1ba3e58859b637e106982e8579542a1aec35108a857c3c8ca66e4db0102a

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

6/3/2024 5:32:33 AM UTC (today)

File size:

10.4 MB (10,854,000 bytes)

Product version:

1.0.0.0

Original file name:

Gaming Mouse.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\afx\afxm0317 configuration\gaming mouse.exe

Digital Signature

Signed by:

Areson Technology

Authority:

Symantec Corporation

Valid from:

8/10/2015 8:00:00 AM

Valid to:

10/9/2018 7:59:59 AM

Subject:

CN=Areson Technology, O=Areson Technology, L=New Taipei City, S=Taiwan, C=TW

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

6B92E97E5CCBE330A04C562CE782AA6F

File PE Metadata

Compilation timestamp:

12/15/2016 3:45:36 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

14.0

Entry address:

0x828B8

Entry point:

E8, 3F, 0C, 00, 00, E9, 8E, FE, FF, FF, 3B, 0D, 24, 25, 4C, 00, F2, 75, 02, F2, C3, F2, E9, 82, 06, 00, 00, 55, 8B, EC, FF, 75, 08, E8, 5B, A2, FD, FF, 59, 5D, C3, 55, 8B, EC, 8B, 45, 08, 56, 8B, 48, 3C, 03, C8, 0F, B7, 41, 14, 8D, 51, 18, 03, D0, 0F, B7, 41, 06, 6B, F0, 28, 03, F2, 3B, D6, 74, 19, 8B, 4D, 0C, 3B, 4A, 0C, 72, 0A, 8B, 42, 08, 03, 42, 0C, 3B, C8, 72, 0C, 83, C2, 28, 3B, D6, 75, EA, 33, C0, 5E, 5D, C3, 8B, C2, EB, F9, E8, AD, 10, 00, 00, 85, C0, 75, 03, 32, C0, C3, 64, A1, 18, 00, 00, 00, 56... 
[+]

Entropy:

7.8008 (probably packed)

Code size:

641 KB (656,384 bytes)

Startup File (All Users Run)

Registry location:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:

AFX AFXM0317 Configuration

Command:

"C:\Program Files\afx\afxm0317 configuration\gaming mouse.exe" \hide

Scan Gaming Mouse.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.