home

miraever2.exe

Mirae Asset Securities Co., Ltd.

Publisher:
Mirae Asset Securities Co., Ltd.  (signed and verified)

Version:
7.5.2.0

MD5:
b2912a9f89b148c27f2d46b3015df87b

SHA-1:
ef09d6412a4f2c6f8178f27d5c5aef020bf79c27

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/25/2024 4:22:56 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Backdoor.Win32.Antilam.16
1669

File size:
773.4 KB (792,000 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Common path:
C:\Windows\System32\miraever2.exe

Digital Signature
Signed by:
Mirae Asset Securities Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
4/10/2009 9:00:00 AM

Valid to:
4/10/2010 8:59:59 AM

Subject:
CN="Mirae Asset Securities Co., Ltd.", OU=IT, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Mirae Asset Securities Co., Ltd.", L=Seoul/South Korea, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7AD0B495621E763C3A172839C04FC3DA

File PE Metadata
Compilation timestamp:
6/20/1992 7:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:k5vWTQjVvM0iijhCYe1LOhYRo5R/ve8w8jgtyKRxi0I6cQbisoUUO:7QWqjbe1Ly5ROOyRVEQbHoi

Entry address:
0xA65AC

Entry point:
55, 8B, EC, 83, C4, F0, B8, 04, 63, 4A, 00, E8, 9C, 05, F6, FF, 68, 10, 66, 4A, 00, 6A, FF, 6A, 00, E8, 0E, 07, F6, FF, A1, 74, 90, 4A, 00, 8B, 00, E8, F6, 06, FC, FF, A1, 74, 90, 4A, 00, 8B, 00, BA, 24, 66, 4A, 00, E8, F1, 02, FC, FF, 8B, 0D, 24, 91, 4A, 00, A1, 74, 90, 4A, 00, 8B, 00, 8B, 15, D4, 4F, 4A, 00, E8, E5, 06, FC, FF, A1, 74, 90, 4A, 00, 8B, 00, E8, 59, 07, FC, FF, E8, 54, DF, F5, FF, 6E, 6F, 44, 75, 70, 6C, 69, 63, 61, 74, 65, 00, FF, FF, FF, FF, 08, 00, 00, 00, B9, F6, C0, FC, C3, B3, B8, AE...
 
[+]

Entropy:
6.6107

Developed / compiled with:
Microsoft Visual C++

Code size:
662 KB (677,888 bytes)

ActiveX Install
Name:
{DDC05DB7-AE09-4959-8667-C7F0A09648F5}


Scan miraever2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.