home

1448378552201508251engine2.zip.tdl

百度卫士

Beijing baidu Netcom science and technology co.ltd

Publisher:
百度在线网络技术(北京)有限公司  (signed by Beijing baidu Netcom science and technology co.ltd)

Product:
百度卫士

Description:
百度杀毒主动防御模块

Version:
1.0.0.90

MD5:
040fe5aed1e7a73618acc43eeb099120

SHA-1:
d8a04569b3155ef31bf415f0ad9e072ab289e814

SHA-256:
b0e3a4e46a24c5068b48e791119227a0514f16e2a74e4a06495785aede9be2ad

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 4:08:56 AM UTC  (today)

File size:
1.4 MB (1,471,552 bytes)

Product version:
1.0.0.90

Copyright:
Copyright (C) 2013 Baidu Inc.

Trademarks:
Baidu

Original file name:
HIPSEngine.dll

Common path:
C:\users\{user}\appdata\local\temp\1448378552201508251engine2.zip.tdl

Digital Signature
Signed by:
Beijing baidu Netcom science and technology co.ltd

Authority:
VeriSign, Inc.

Valid from:
2/27/2012 6:00:00 AM

Valid to:
2/27/2015 5:59:59 AM

Subject:
CN=Beijing baidu Netcom science and technology co.ltd, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Beijing baidu Netcom science and technology co.ltd, L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
56659719569BE07B775A1B2275E2D83A

File PE Metadata
Compilation timestamp:
7/7/2014 2:55:34 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:uaG2jBGePAlIB8IeZtkcanzNSCkLL3iz5Cc9+bncT1t9gYwYG+uscOE:FG2jPAIOIQtvanzoAebcTT9gYwYhDFE

Entry address:
0x42BCF

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, 19, 06, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, CD, FE, FF, FF, 59, C2, 0C, 00, FF, 25, 5C, 34, 11, 10, FF, 25, 60, 34, 11, 10, FF, 25, 64, 34, 11, 10, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 80, F9, 40, 73, 15, 80, F9, 20, 73, 06, 0F, AD, D0, D3, EA, C3, 8B, C2, 33, D2, 80, E1, 1F, D3, E8, C3, 33, C0, 33, D2, C3, CC, FF, 25, 68, 34, 11, 10, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 80, F9, 40, 73, 15, 80, F9, 20, 73, 06, 0F, A5, C2, D3, E0...
 
[+]

Code size:
1.1 MB (1,122,304 bytes)

Scan 1448378552201508251engine2.zip.tdl - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.