home

3DP_Cleaner_v1412.exe

3DP Cleaner

3DP

This is a setup program which is used to install the application. The file has been seen being downloaded from driver3.3dpchip.com and multiple other hosts.
Publisher:
3DP  (signed and verified)

Product:
3DP Cleaner

Version:
14.12

MD5:
406ec8f4745aec0d55af7b3c79603d2b

SHA-1:
ee5cb300a704369e8f62d40099278ada01d4c17d

SHA-256:
9cdfe60039b488781f85181b13c99ad9583e2e6fa30c4d04959bb7ce77e70f41

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 5:13:29 PM UTC  (today)

File size:
1000.4 KB (1,024,448 bytes)

Product version:
14.12

Copyright:
3DP. All rights reserved.

Original file name:
3DP_Cleaner_v1412.exe

File type:
Executable application (Win32 EXE)

Language:
Korean (Korea)

Common path:
C:\users\{user}\downloads\3dp_cleaner_v1412.exe

Digital Signature
Signed by:
3DP

Authority:
GlobalSign nv-sa

Valid from:
10/20/2014 1:42:57 PM

Valid to:
10/21/2015 1:42:57 PM

Subject:
CN=3DP, O=3DP, L=Gimhae-si, S=Gyeongsangnam-do, C=KR

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112146528C53F341141EADAD2946A588F3FD

File PE Metadata
Compilation timestamp:
12/8/2014 11:28:54 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.12

CTPH (ssdeep):
24576:Uj+SFr+gsg1NXCOexiX1Sz3ZTULyhenNXPoa:UPi2HI22Q/N7

Entry address:
0x1000

Entry point:
68, 01, 27, 16, EC, E8, 95, 5B, 2F, 00, 9F, 60, 60, 8B, 45, 00, 68, A4, 83, 91, AC, 68, 0E, 55, 04, 8C, E8, E8, 70, 2F, 00, 9C, E9, 3E, 54, 2F, 00, 70, 00, 61, E9, C3, E0, 2E, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.7501

Packer / compiler:
ASProtect v1.2

Code size:
3 MB (3,113,472 bytes)

The file 3DP_Cleaner_v1412.exe has been seen being distributed by the following 3 URLs.

http://driver3.3dpchip.com/3DP_Cleaner_v1412.exe

http://www.3dpchip.com/3DP_Cleaner_v1412.exe

http://driver2.3dpchip.com/3DP_Cleaner_v1412.exe

Scan 3DP_Cleaner_v1412.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.