» maxregistrycleanerx64.exe
Overview
Analysis
File Details

maxregistrycleanerx64.exe

Max Registry Cleaner

Max Secure Software India Pvt. Ltd.

The application maxregistrycleanerx64.exe by Max Secure Software India Pvt has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

Publisher:

Max Secure Software (signed by Max Secure Software India Pvt. Ltd.)

Product:

Max Registry Cleaner

Version:

1, 0, 2, 60

MD5:

fa26ae5ed9d9e56efe324e23af63fb98

SHA-1:

7254a47302e958611fda8a354c8bbc6434d4c660

SHA-256:

9124f1b9a66c430d63e5c4a6bbb6b690d2064e1a342b8173a1d1e57b9abad8a1

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

5/4/2024 3:32:38 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.MaxSecure.Optional (L)

16.7.31.9

File size:

8.2 MB (8,548,736 bytes)

Product version:

1, 0, 2, 60

Original file name:

MaxRegistryCleaner.exe

File type:

Executable application (Win64 EXE)

Language:

English (United States)

Common path:

C:\Program Files\max registry cleaner\maxregistrycleanerx64.exe

Digital Signature

Signed by:

Max Secure Software India Pvt. Ltd.

Authority:

GlobalSign nv-sa

Valid from:

7/3/2008 4:39:02 AM

Valid to:

7/3/2009 4:39:02 AM

Subject:

E=tech@maxpcsecure.com, CN=Max Secure Software India Pvt. Ltd., O=Max Secure Software India Pvt. Ltd., C=IN

Issuer:

CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:

0100000000011AE8B8038D

File PE Metadata

Compilation timestamp:

2/16/2009 10:27:15 PM

OS version:

4.0

OS bitness:

Win64

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

49152:U5QY0k2xB5DWHQbkDheRIB12eH2r7fkjGdcEk3cD1Nk3dx77DMz2KTjR2ubu10ei:w2Vb01A64zHTjRNu10Q84XpY

Entry address:

0x16A820

Entry point:

48, 83, EC, 28, E8, 27, B6, 00, 00, 48, 83, C4, 28, E9, 0E, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 48, 83, EC, 58, 48, 89, 6C, 24, 68, 48, 89, 7C, 24, 78, 49, 63, 78, 0C, 4C, 89, 64, 24, 50, 4C, 89, 6C, 24, 48, 4C, 89, 74, 24, 40, 4C, 89, 7C, 24, 38, 4C, 8B, F9, 49, 8B, C8, 4D, 8B, E1, 4D, 8B, F0, 4C, 8B, EA, E8, 46, B7, 00, 00, 85, FF, 4D, 8B, 17, 4D, 89, 14, 24, 8B, E8, 0F, 84, CE, 00, 00, 00, 48, 89, 74, 24, 70, 48, 8D, 0C, BF, 48, 89, 5C, 24, 60, 48, 8D, 34, 8D, EC, FF, FF... 
[+]

Entropy:

6.0253

Code size:

3.5 MB (3,644,928 bytes)

Remove maxregistrycleanerx64.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.