home

mididef.exe

Creative Audio Product

Creative Technology Ltd

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘SetDefaultMIDI’.
Publisher:
Creative Technology Ltd

Product:
Creative Audio Product

Description:
mididef

Version:
2, 9, 0, 6

MD5:
b01fdba4949b71d1e76e16c9a3f4ce57

SHA-1:
710a6c2d655da3e6da20d30c46950cee1e8e9850

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
5/12/2025 7:48:33 PM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Heur.Suspicious
17804

File size:
30.5 KB (31,232 bytes)

Product version:
2, 9, 0, 6

Copyright:
Copyright© 2000-2005 Creative Technology Ltd

Original file name:
mididef.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Windows\System32\mididef.exe

File PE Metadata
Compilation timestamp:
12/12/2007 5:42:54 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
768:tkV0LaUrCdQUJIyj8DnrMRV7MsSBrKJrk+8qRvV:tkV0LJgIfXMvXKKBl8y

Entry address:
0x6BFB

Entry point:
E8, DE, 05, 00, 00, E9, 40, FD, FF, FF, CC, CC, CC, CC, CC, 3B, 0D, 00, 80, 00, 01, 75, 02, F3, C3, E9, 4F, 06, 00, 00, CC, CC, CC, CC, CC, FF, 25, 08, 11, 00, 01, CC, CC, CC, CC, CC, CC, FF, 25, 04, 11, 00, 01, CC, CC, CC, CC, CC, CC, CC, CC, 53, 56, 57, 8B, 54, 24, 10, 8B, 44, 24, 14, 8B, 4C, 24, 18, 55, 52, 50, 51, 51, 68, C8, 6C, 00, 01, 64, FF, 35, 00, 00, 00, 00, A1, 00, 80, 00, 01, 33, C4, 89, 44, 24, 08, 64, 89, 25, 00, 00, 00, 00, 8B, 44, 24, 30, 8B, 58, 08, 8B, 4C, 24, 2C, 33, 19, 8B, 70, 0C, 83...
 
[+]

Entropy:
6.1788

Code size:
27 KB (27,648 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SetDefaultMIDI

Command:
mididef.exe


Scan mididef.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.