home

mousedriver.exe

SYSGRATION LTD

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘MouseDriverD9’.
Publisher:
SYSGRATION LTD  (signed and verified)

MD5:
dbbc6e5fe623bce83296a9ce6a68117d

SHA-1:
8ea612c4a4e1a4d9f7fcc16953483646221235d2

SHA-256:
15d491bef40a753371f41f2aec6cfb1cac526ad9c6c2eea0d0679a388f8f6513

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:25:10 PM UTC  (a few moments ago)

File size:
3.1 MB (3,298,808 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\mousedriver\mousedriver.exe

Digital Signature
Signed by:
SYSGRATION LTD

Authority:
VeriSign, Inc.

Valid from:
6/9/2008 2:00:00 AM

Valid to:
6/15/2009 1:59:59 AM

Subject:
CN=SYSGRATION LTD, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=SYSGRATION LTD, L=TAIPEI, S=TAIWAN, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4CA692B2B2F24673042DBBCDF56616A4

File PE Metadata
Compilation timestamp:
11/27/2008 4:56:16 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

Entry address:
0x5F2B0

Entry point:
48, 83, EC, 28, E8, 77, 84, 00, 00, 48, 83, C4, 28, E9, FE, FC, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 48, 83, EC, 28, 4D, 8B, 51, 38, 48, 89, 5C, 24, 30, 48, 89, 6C, 24, 38, 41, 8B, 02, 48, 89, 74, 24, 40, 48, 8B, F2, 48, 03, C0, 48, 89, 7C, 24, 48, 48, 8B, E9, 49, 8D, 5C, C2, 04, 4C, 89, 64, 24, 20, 4D, 8B, E0, 49, 8B, D1, 48, 8B, CE, 4C, 8B, C3, 49, 8B, F9, E8, 9A, E7, FF, FF, F6, 45, 04, 66, 44, 8B, 1B, 48, 8B, 5C, 24, 30, 75, 06, 41, 83, E3, 01, EB, 04, 41, 83, E3, 02, 45, 85...
 
[+]

Code size:
445.5 KB (456,192 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
MouseDriverD9

Command:
C:\Program Files\mousedriver\mousedriver.exe


Scan mousedriver.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.