» Gaming Mouse.exe
Overview
Analysis
File Details
Behaviors (1)

Gaming Mouse.exe

Gaming Mouse

Areson Technology

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Areson Gaming Mouse 5’.

File name:

Gaming Mouse.exe

Publisher:

Areson (signed by Areson Technology)

Product:

Gaming Mouse

Version:

1.0.0.1

MD5:

d3ade21ea65d3d1c29c035f257e6fa7e

SHA-1:

dbf06c90fbdfeb579ba051571ce99cd7fb77b0bb

SHA-256:

024a3b98aaa9f2bb7897a4257d30556c5c10dfeb7ce2519807288353e43981ea

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

6/3/2024 11:46:32 AM UTC (today)

File size:

7.3 MB (7,636,936 bytes)

Product version:

1.0.0.1

Original file name:

Gaming Mouse.exe

File type:

Executable application (Win32 EXE)

Language:

Chinese (Traditional, Taiwan)

Common path:

C:\Program Files\areson gaming mouse\gaming mouse.exe

Digital Signature

Signed by:

Areson Technology

Authority:

Symantec Corporation

Valid from:

8/10/2015 8:00:00 AM

Valid to:

10/9/2018 7:59:59 AM

Subject:

CN=Areson Technology, O=Areson Technology, L=New Taipei City, S=Taiwan, C=TW

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

6B92E97E5CCBE330A04C562CE782AA6F

File PE Metadata

Compilation timestamp:

8/29/2016 11:12:55 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

14.0

CTPH (ssdeep):

196608:qNOdJt2rIZSpHwm2VTt0ibaSg+IrSXzkCBqIxgFLOyomFHKnPGL:kO/zS9JIt0Sg+IrYz5BwFJL

Entry address:

0x823F9

Entry point:

E8, 5E, 0C, 00, 00, E9, 8E, FE, FF, FF, 3B, 0D, 24, 15, 4C, 00, F2, 75, 02, F2, C3, F2, E9, 9F, 06, 00, 00, 55, 8B, EC, FF, 75, 08, E8, 63, A2, FD, FF, 59, 5D, C3, 55, 8B, EC, 8B, 45, 08, 56, 8B, 48, 3C, 03, C8, 0F, B7, 41, 14, 8D, 51, 18, 03, D0, 0F, B7, 41, 06, 6B, F0, 28, 03, F2, 3B, D6, 74, 19, 8B, 4D, 0C, 3B, 4A, 0C, 72, 0A, 8B, 42, 08, 03, 42, 0C, 3B, C8, 72, 0C, 83, C2, 28, 3B, D6, 75, EA, 33, C0, 5E, 5D, C3, 8B, C2, EB, F9, E8, 8B, 10, 00, 00, 85, C0, 75, 03, 32, C0, C3, 64, A1, 18, 00, 00, 00, 56... 
[+]

Entropy:

7.6684

Code size:

640 KB (655,360 bytes)

Startup File (All Users Run)

Registry location:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:

Areson Gaming Mouse 5

Command:

"C:\Program Files\areson gaming mouse\gaming mouse.exe" \hide

Scan Gaming Mouse.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.