home

magnetramcapture.exe

Magnet RAM Capture

Magnet Forensics Inc.

Publisher:
Magnet Forensics Inc.  (signed and verified)

Product:
Magnet RAM Capture

Version:
1.01.0001

MD5:
35336edffb84e2c21760e82d66485014

SHA-1:
23563859c8c4d45a24817d39d730209f5e11b17a

SHA-256:
b96a7ca5173e78b9573be20a825f9d052eaaeeacbd191cafe52b2695b9d92d46

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
5/5/2024 7:11:12 AM UTC  (today)

Scan engine
Detection
Engine version

Qihoo 360 Security
HEUR/QVM41.1.0000.Malware.Gen
1.0.0.1120

File size:
286 KB (292,864 bytes)

Product version:
1.01.0001

Copyright:
Magnet Forensics Inc.

Trademarks:
Magnet Forensics inc.

Original file name:
MRC.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\magnetramcapture.exe

Digital Signature
Signed by:
Magnet Forensics Inc.

Authority:
GlobalSign nv-sa

Valid from:
12/17/2016 6:06:47 PM

Valid to:
10/1/2018 10:08:15 PM

Subject:
E=jad@magnetforensics.com, CN=Magnet Forensics Inc., O=Magnet Forensics Inc., L=Waterloo, S=Ontario, C=CA

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE

Serial number:
74749DBADFDA25ED7C32A542

File PE Metadata
Compilation timestamp:
1/11/2017 10:05:49 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x17D4

Entry point:
68, 50, 6B, 41, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 50, 00, 00, 00, 38, 00, 00, 00, 9D, BE, 93, 37, BD, FE, C2, 4C, 9C, 84, 93, 46, 02, B3, 8E, 7D, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4D, 52, 43, 00, 00, 00, 00, 00, 4D, 61, 67, 6E, 65, 74, 20, 52, 41, 4D, 20, 43, 61, 70, 74, 75, 72, 65, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 0C, A1, 32, 84, DA, 69, 1D, 95, 45, 8D, 93, 35, 87, 2F, F7, ED, E3, ED, 7C, 51, B5, 33, 87, D7, 4E, 93, C8, 1C...
 
[+]

Entropy:
5.4177

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
144 KB (147,456 bytes)

Scan magnetramcapture.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.