home

somud.exe

SoMud

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘SoMud’.
Publisher:
SoMud

Product:
SoMud

Description:
SoMud - Search and Download Everything on the Internet

Version:
1.3.9

MD5:
6a68fe3c7e4ce947e1ce33594030e7c8

SHA-1:
cae7bf1945b98ec148cde52140fad4b3368b8281

SHA-256:
d49ab3b9ca27ae1d09045c1526783ed05675f7eb80c7af2c6ee74c1e80712577

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 5:12:44 PM UTC  (today)

File size:
3.8 MB (4,024,320 bytes)

Product version:
1.3.9

Copyright:
Copyright (C) 2013

Original file name:
somud.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\somud\somud.exe

File PE Metadata
Compilation timestamp:
10/15/2013 5:50:31 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:QSysNwwrb7srjVjZlfEzRuXSZj2nLpGpFwiWVpi2lhaUbz9Tsr3Cisktnlee7XUa:jBMJZlE6SiiWVpi2lhaUtis

Entry address:
0x2482F9

Entry point:
E8, 2A, 05, 00, 00, E9, 36, FD, FF, FF, 3B, 0D, F0, E3, 77, 00, 75, 02, F3, C3, E9, AC, 05, 00, 00, 8B, FF, 55, 8B, EC, 5D, E9, 20, 00, 00, 00, 8B, FF, 55, 8B, EC, FF, 75, 08, E8, 08, F8, FF, FF, 59, 5D, C3, 8B, FF, 55, 8B, EC, FF, 75, 08, E8, 10, F7, FF, FF, 59, 5D, C3, 6A, 08, B8, 33, 31, 67, 00, E8, 7B, 06, 00, 00, FF, 75, 08, 83, 65, FC, 00, E8, 1B, F7, FF, FF, 59, 89, 45, EC, 8B, 45, EC, E8, 99, 06, 00, 00, C3, 83, 65, EC, 00, B8, 59, 83, 64, 00, C3, CC, CC, CC, CC, 80, F9, 40, 73, 15, 80, F9, 20, 73...
 
[+]

Code size:
2.7 MB (2,781,696 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SoMud

Command:
"C:\Program Files\somud\somud.exe" \bg


Scan somud.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.