home

zeemouse.exe

MD5:
44a091378448cfb56e224c5c606c42fe

SHA-1:
9abc44ecfca5acc81345b8bc999ab16a0627a592

SHA-256:
be59edd90b2b485505466db6ac15d455cf3f9acdc04b47721a940d34914d2cdd

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/20/2024 2:45:34 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Rogue.1497018
7.11.153.40

IKARUS anti.virus
Trojan.Rogue
t3scan.1.6.1.0

Qihoo 360 Security
Win32/Trojan.af7
1.0.0.1015

File size:
26.5 KB (27,136 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\zeemouse.exe

File PE Metadata
Compilation timestamp:
12/22/2013 10:09:40 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
384:b4JRPLg9FJ3kAFe86qXmEVsu04ePM5TgzrZrJIpVuyihKLqsh5:bkRU9FJ3DFNXfsu06REtiVlihKfh

Entry address:
0x25F5

Entry point:
55, 8B, EC, 83, EC, 44, 56, FF, 15, 34, 50, 40, 00, 8B, F0, 8A, 06, 3C, 22, 75, 11, 3C, 22, 74, 1D, 46, 8A, 06, 84, C0, 75, F5, 3C, 22, 75, 13, EB, 10, 3C, 20, 7E, 0D, 46, 80, 3E, 20, 7F, FA, EB, 05, 3C, 20, 7F, 07, 46, 8A, 06, 84, C0, 75, F5, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 38, 50, 40, 00, 51, 56, 6A, 00, FF, 15, 3C, 50, 40, 00, 8B, C8, E8, AF, E9, FF, FF, 50, FF, 15, 50, 50, 40, 00, CC, 3B, 0D, 00, 60, 40, 00, 75, 02, F3, C3, E9, 3D, 00, 00, 00, 55, 8B, EC, FF, 15, 4C, 50, 40, 00, 6A, 01, A3, 3C...
 
[+]

Entropy:
5.6579

Developed / compiled with:
Microsoft Visual C++

Code size:
14.5 KB (14,848 bytes)

The file zeemouse.exe has been seen being distributed by the following URL.

http://www.bitbanksoftware.com/zeemouse.exe

Scan zeemouse.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.