» UARGMonitor.exe
Overview
Analysis
File Details
Behaviors (1)

UARGMonitor.exe

UniArgus CMS

UniSVR Global Information Technology Corporation

File name:

UARGMonitor.exe

Publisher:

UniSVR Global Information Technical Corp. (signed by UniSVR Global Information Technology Corporation)

Product:

UniArgus CMS

Version:

2.53.0027

MD5:

7fd68774f93a9b22bf3cf614f7c2d0d6

SHA-1:

9d5e55379f8af5fb6b267d6263f140996ea538e4

Scanner detections:

1 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/24/2024 7:02:43 AM UTC (today)

Scan engine

Detection

Engine version

Dr.Web

probably BACKDOOR.Trojan

9.0.1.05190

File size:

1.6 MB (1,713,536 bytes)

Product version:

2.53.0027

Original file name:

UARGMonitor.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\uniargus\bin\uargmonitor.exe

Digital Signature

Signed by:

UniSVR Global Information Technology Corporation

Authority:

VeriSign, Inc.

Valid from:

7/14/2010 8:00:00 AM

Valid to:

7/16/2013 7:59:59 AM

Subject:

CN=UniSVR Global Information Technology Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=UniSVR Global Information Technology Corporation, L=Taipei, S=Taiwan, C=TW

Issuer:

CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

12B0F3B29C3C64F96EE64506F8E37236

File PE Metadata

Compilation timestamp:

6/30/2011 4:37:58 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

Entry address:

0x7570

Entry point:

68, F8, 96, 42, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 4D, 88, 84, 71, 48, E6, 72, 4B, 94, 07, 6E, 43, 13, E0, 50, 52, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 10, 7B, 47, 01, 55, 41, 52, 47, 4D, 6F, 6E, 69, 74, 6F, 72, 00, 58, 85, 40, 00, 00, 00, 00, 00, FF, CC, 31, 00, 7E, 0A, 85, 48, 9D, AD, 4D, 29, 4C, B3, FE, 60, B2, 75, D3, 22, CD, C3, 88, A2, 67, 0B, 42, D6, 46, 87, B0, ED, 90, F7, 94, 8E, 9E, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00... 
[+]

Entropy:

6.1814

Developed / compiled with:

Microsoft Visual Basic v5.0

Code size:

1.6 MB (1,695,744 bytes)

Windows Firewall Allowed Program

Name:

C:\Program Files\UniArgus\Bin\UARGMonitor.exe

Scan UARGMonitor.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.