» mgusb.exe
Overview
Analysis
File Details
Programs (1)

mgusb.exe

Beijing AmazGame Age Internet Technology Co., Ltd.

The application mgusb.exe by Beijing AmazGame Age Internet Technology Co. has been detected as a potentially unwanted program by 2 anti-malware scanners. This file is typically installed with the program Mobogenie by Beijing Yang Fan Jing He Information Consulting Co. Ltd..

File name:

mgusb.exe

Publisher:

Beijing AmazGame Age Internet Technology Co., Ltd. (signed and verified)

MD5:

d53024c1355615b82dd1526b63623e61

SHA-1:

02d365a799fdcbf8c8a507fcfc69946b402fea53

SHA-256:

ad59ba08a3c4828e5b1129903fdccd5e28f5d430a960a9cc417bbb678ed90076

Scanner detections:

2 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 7:19:39 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Optional.BeijingAmazGameAgeInternetTechnologyCo.F

14.3.1.14

XVirus List

Win.Detected

2.3.31

File size:

86.2 KB (88,256 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\administrator\mgusb.exe

Digital Signature

Signed by:

Beijing AmazGame Age Internet Technology Co., Ltd.

Authority:

VeriSign, Inc.

Valid from:

3/16/2012 7:00:00 AM

Valid to:

6/16/2015 6:59:59 AM

Subject:

CN="Beijing AmazGame Age Internet Technology Co., Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Beijing AmazGame Age Internet Technology Co., Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

22CF7DA7B76FC5C4E77225CFA1BDA497

File PE Metadata

Compilation timestamp:

9/17/2013 2:31:02 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

10.0

CTPH (ssdeep):

1536:rxkYPiyYpZuMl5plKzd6UhHdzsxHA59XSHw04Aw44:rxyyYpHrla6MsG59XSwAwF

Entry address:

0x6200

Entry point:

E8, 22, 3C, 00, 00, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 20, 8B, 45, 08, 56, 57, 6A, 08, 59, BE, 24, F2, 40, 00, 8D, 7D, E0, F3, A5, 89, 45, F8, 8B, 45, 0C, 5F, 89, 45, FC, 5E, 85, C0, 74, 0C, F6, 00, 08, 74, 07, C7, 45, F4, 00, 40, 99, 01, 8D, 45, F4, 50, FF, 75, F0, FF, 75, E4, FF, 75, E0, FF, 15, 74, F0, 40, 00, C9, C2, 08, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, D0, 3F, 41, 00, 89, 0D, CC, 3F, 41, 00, 89, 15, C8, 3F, 41, 00, 89, 1D, C4, 3F, 41, 00, 89, 35, C0, 3F, 41, 00, 89, 3D... 
[+]

Code size:

55.5 KB (56,832 bytes)

The file mgusb.exe has been discovered within the following program.

Mobogenie by Beijing Yang Fan Jing He Information Consulting Co. Ltd.

Mobogenie is an Android app store portal that may use the OpenCandy, Quick Downloader, Conduit and various other monetization programs to bundle with third party installers. In many cases some versions (mostly older ones) are bundled by third party distribution platforms.

www.mobogenie.com/pc.html

56% remove it

Remove mgusb.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.