home

PATRIOT VIPER MOUSE.EXE

PATRIOT VIPER MOUSE

Areson Technology

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘PATRIOT VIPER MOUSE’. This is installed with PATRIOT VIPER MOUSE.
Publisher:
PATRIOT  (signed by Areson Technology)

Product:
PATRIOT VIPER MOUSE

Version:
1.0.0.1

MD5:
bc16da41965e3f449a2cbdbf1bfc6b26

SHA-1:
09b721299c3de66de60357238489a6b6670b1d42

SHA-256:
d0a80acf6ad5ba3a92c84767c0c4924ddb8103d69f04c673cf33eab3f69ae714

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
6/2/2024 10:27:04 PM UTC  (today)

File size:
6.5 MB (6,764,144 bytes)

Product version:
1.0.0.1

Original file name:
PATRIOT VIPER MOUSE.EXE

File type:
Executable application (Win32 EXE)

Language:
Chinese (Traditional, Taiwan)

Common path:
C:\Program Files\patriot viper mouse\patriot viper mouse.exe

Digital Signature
Signed by:
Areson Technology

Authority:
Symantec Corporation

Valid from:
8/9/2015 7:00:00 PM

Valid to:
10/8/2018 6:59:59 PM

Subject:
CN=Areson Technology, O=Areson Technology, L=New Taipei City, S=Taiwan, C=TW

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
6B92E97E5CCBE330A04C562CE782AA6F

File PE Metadata
Compilation timestamp:
1/12/2016 7:19:07 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
196608:YvWrvFERxt4IXfi6+IqzyBCBq2FLOyomFHKnPr:naRxtDf7+IqzyQBJF6

Entry address:
0x75D20

Entry point:
E8, 37, 0C, 00, 00, E9, 80, FE, FF, FF, 3B, 0D, 24, 45, 4B, 00, F2, 75, 02, F2, C3, F2, E9, 85, 06, 00, 00, 55, 8B, EC, FF, 75, 08, E8, D2, C9, FD, FF, 59, 5D, C3, 55, 8B, EC, 8B, 45, 08, 56, 8B, 48, 3C, 03, C8, 0F, B7, 41, 14, 8D, 51, 18, 03, D0, 0F, B7, 41, 06, 6B, F0, 28, 03, F2, 3B, D6, 74, 19, 8B, 4D, 0C, 3B, 4A, 0C, 72, 0A, 8B, 42, 08, 03, 42, 0C, 3B, C8, 72, 0C, 83, C2, 28, 3B, D6, 75, EA, 33, C0, 5E, 5D, C3, 8B, C2, EB, F9, E8, 6E, 10, 00, 00, 85, C0, 75, 03, 32, C0, C3, 64, A1, 18, 00, 00, 00, 56...
 
[+]

Entropy:
7.6804

Code size:
589 KB (603,136 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
PATRIOT VIPER MOUSE

Command:
"C:\Program Files\patriot viper mouse\patriot viper mouse.exe" \hide


The file PATRIOT VIPER MOUSE.EXE has been discovered within the following program.

PATRIOT VIPER MOUSE  by PATRIOT
About 1% of users remove it
 
Powered by Should I Remove It?

Scan PATRIOT VIPER MOUSE.EXE - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.