home

pcmm2009.exe

PCMightyMax

PC MightyMax, Inc.

The application pcmm2009.exe by PC MightyMax has been detected as a potentially unwanted program by 6 anti-malware scanners.
Publisher:
PC MightyMax, Inc.  (signed and verified)

Product:
PCMightyMax

Version:
1.1.0.1

MD5:
fb978c65b874d015a9edfa4d7fd37be2

SHA-1:
8dfecc5bd6816e1bf662d03ae093b6beb2e936ab

SHA-256:
bfafffd21fc361eb809ca3cd695a3588d235b56de2f342de65223b8b45588f55

Scanner detections:
6 / 68

Status:
Potentially unwanted

Analysis date:
4/23/2024 11:59:51 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Bkav FE
W32.Clod147.Trojan
1.3.0.4959

IKARUS anti.virus
Trojan.Win32.FakeAV
t3scan.1.8.3.0

Kaspersky
Trojan-FakeAV.MSIL.PCMightyMax
14.0.0.1570

Reason Heuristics
PUP.Optional.PCMightyMax.Startup
15.8.17.1

Rising Antivirus
PE:Trojan.Win32.Generic.12D0D8F8!315676920
23.00.65.15815

Vba32 AntiVirus
TrojanFakeAV.MSIL.PCMightyMax
3.12.26.3

File size:
1.7 MB (1,800,984 bytes)

Product version:
1.1.0.1

Copyright:
Copyright © 2008

Original file name:
PCMightyMax.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\pc mightymax 2009\pcmm2009.exe

Digital Signature
Signed by:
PC MightyMax, Inc.

Authority:
VeriSign, Inc.

Valid from:
11/4/2008 4:00:00 PM

Valid to:
11/16/2009 3:59:59 PM

Subject:
CN="PC MightyMax, Inc.", OU=Comsumer Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="PC MightyMax, Inc.", L=Valrico, S=Florida, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
414F3ACBC018138475C7696E5E8710E2

File PE Metadata
Compilation timestamp:
3/17/2009 6:59:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:V20J7V4pbk0Vt7AeBsO99zeU6IWWw8zKW9eRtKZuz3BL3+4IkIJ/k/8oo:A0J7GpwE7/HzeUK8zCwuNzIk0/O89

Entry address:
0x1A879E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 03, 00, 00, 00, 30, 00, 00, 80, 0E, 00, 00, 00, 68, 00...
 
[+]

Entropy:
7.8458

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1.7 MB (1,730,560 bytes)

Startup File (All Users Run Once)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Name:
PCMM

Command:
"C:\Program Files\pc mightymax 2009\pcmm2009.exe" \firstrun


Remove pcmm2009.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.