home

LogMeIn.exe

LogMeIn

3am Labs, Inc.

The executable LogMeIn.exe has been detected as malware by 5 anti-virus scanners. It runs as a windows Service named “LogMeIn”.
Publisher:
3am Labs, Inc.  (signed and verified)

Product:
LogMeIn

Version:
2.30.523

MD5:
12c4574b56d831e792138dea2fd37d0f

SHA-1:
df4901bc5b24a8727a96a289e36e0a60ce5ddb50

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
4/26/2024 10:43:53 PM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
Win.Trojan.Patched-143
0.98/23054

Dr.Web
Trojan.Starter.1695
9.0.1.05190

ESET NOD32
Win32/Patched.HN trojan
6.3.12010.0

F-Prot
W32/Patched.G
4.6.5.141

Kaspersky
Trojan.Win32.Patched
15.0.2.529

File size:
1.5 MB (1,610,480 bytes)

Product version:
2.30.523

Copyright:
Copyright © 2003-2005 3am Labs, Inc. US patents pending.

Original file name:
LogMeIn.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\logmein\logmein.exe

Digital Signature
Signed by:
3am Labs, Inc.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
10/5/2005 11:52:50 AM

Valid to:
10/7/2006 11:36:28 AM

Subject:
CN="3am Labs, Inc.", OU=Secure Application Development, O="3am Labs, Inc.", L=Woburn, S=Massachusetts, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
21E60D

File PE Metadata
Compilation timestamp:
12/15/2005 5:55:38 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
7.0

Entry address:
0x1AE0DC

Entry point:
68, D8, 77, 4F, 00, E9, 34, 06, 00, 00, E8, 0F, 00, 00, 00, 43, 72, 65, 61, 74, 65, 50, 72, 6F, 63, 65, 73, 73, 57, 00, 58, C3, 90, E8, 18, 00, 00, 00, 5C, 00, 73, 00, 79, 00, 73, 00, 74, 00, 65, 00, 6D, 00, 72, 00, 6F, 00, 6F, 00, 74, 00, 00, 00, 58, C3, 90, E8, 1E, 00, 00, 00, 5C, 00, 5C, 00, 2E, 00, 5C, 00, 67, 00, 6C, 00, 6F, 00, 62, 00, 61, 00, 6C, 00, 72, 00, 6F, 00, 6F, 00, 74, 00, 00, 00, 58, C3, 90, E8, 12, 00, 00, 00, 6B, 00, 65, 00, 72, 00, 6E, 00, 65, 00, 6C, 00, 33, 00, 32, 00, 00, 00, 58, C3...
 
[+]

Entropy:
6.2689

Code size:
1020 KB (1,044,480 bytes)

Service
Display name:
LogMeIn

Type:
Win32OwnProcess, InteractiveProcess

Depends on:
Tcpip RPCSS


Remove LogMeIn.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.