home

MinimonAgent.exe

MinimonAgent Application

DEVGURU CO LTD

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Mini Monitor’.
Publisher:
Devguru  (signed by DEVGURU CO LTD)

Product:
MinimonAgent Application

Version:
1, 0, 4570, 1214

MD5:
bc943f9b22cbcd69038a64aa40b39ca8

SHA-1:
b43fb95536ed57ebb8ffdd5b3296ac9b7a66cdce

SHA-256:
d746090e486e12bed70610cada92430ec13f6d1565d2d4e728d1df2d70b45bfb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 10:26:17 AM UTC  (today)

File size:
710.6 KB (727,640 bytes)

Product version:
1, 0, 4570, 1214

Copyright:
Copyright Devguru (C) 2009

Original file name:
MinimonAgent.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\minimonagent.exe

Digital Signature
Signed by:
DEVGURU CO LTD

Authority:
VeriSign, Inc.

Valid from:
6/15/2009 9:00:00 AM

Valid to:
7/14/2010 8:59:59 AM

Subject:
CN=DEVGURU CO LTD, OU=R&D Team, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=DEVGURU CO LTD, L=Seocho-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
249D941BCFDF576C3ADC926A10704425

File PE Metadata
Compilation timestamp:
12/14/2009 5:44:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:hhIUI+tKDCTDS3H4lWB81p+coUzhYutFB23VHUO6r8yzMC:hqDCf8YlWipoUzhYQBYnC

Entry address:
0x3EAFA

Entry point:
E8, AC, 60, 00, 00, E9, 17, FE, FF, FF, 3B, 0D, 60, C9, 49, 00, 75, 02, F3, C3, E9, 2C, 61, 00, 00, 6A, 0C, 68, 90, 57, 49, 00, E8, AD, 2F, 00, 00, 8B, 75, 08, 85, F6, 74, 75, 83, 3D, 64, 4C, 4A, 00, 03, 75, 43, 6A, 04, E8, 83, 63, 00, 00, 59, 83, 65, FC, 00, 56, E8, F1, 63, 00, 00, 59, 89, 45, E4, 85, C0, 74, 09, 56, 50, E8, 0D, 64, 00, 00, 59, 59, C7, 45, FC, FE, FF, FF, FF, E8, 0B, 00, 00, 00, 83, 7D, E4, 00, 75, 37, FF, 75, 08, EB, 0A, 6A, 04, E8, 71, 62, 00, 00, 59, C3, 56, 6A, 00, FF, 35, 94, 0C, 4A...
 
[+]

Entropy:
6.2713

Code size:
500 KB (512,000 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Mini Monitor

Command:
"C:\Program Files\minimonagent.exe"


Scan MinimonAgent.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.