home

5a86.exe

搜狗一键安装器

Sogou.com

Publisher:
北京搜狗科技发展有限公司  (signed by Sogou.com)

Product:
搜狗一键安装器

Version:
2.2.0.18792

MD5:
5ff04394428c220d134d0800c6879ebb

SHA-1:
7063895b7a3fe7f44cdaf4a776bc5d91d9a2cf24

SHA-256:
173487c563593cb12e47b2b62b0b1a8df2624709444523c51436977d3bfe1a58

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 4:03:57 AM UTC  (today)

File size:
970.7 KB (993,960 bytes)

Product version:
2.2.0.18792

Copyright:
(C)2014 Sogou.com Inc. All rights reserved.

Original file name:
搜狗一键安装器

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\5a86.exe

Digital Signature
Signed by:
Sogou.com

Authority:
VeriSign, Inc.

Valid from:
6/25/2012 8:00:00 AM

Valid to:
8/25/2015 7:59:59 AM

Subject:
CN=Sogou.com, OU=Desktop, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Sogou.com, L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
59B95D558C2DCC523572E3F8F9A5F79D

File PE Metadata
Compilation timestamp:
5/29/2014 4:49:41 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x70A06

Entry point:
E8, A5, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F1, 33, DB, 3B, F3, 75, 1E, E8, 15, 06, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, 19, C2, FF, FF, 83, C4, 14, 8B, C6, E9, A9, 00, 00, 00, 57, 39, 5D, 08, 77, 1E, E8, F1, 05, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, F5, C1, FF, FF, 83, C4, 14, 8B, C6, E9, 84, 00, 00, 00, 33, C9, 39, 5D, 10, 88, 1E, 0F, 95, C1, 41, 39, 4D, 08, 77, 09, E8, C3, 05, 00, 00, 6A, 22, EB, D0, 8B, 4D, 0C, 83, C1, FE, 83, F9, 22, 77, BE...
 
[+]

Entropy:
6.7603

Packer / compiler:
PEQuake V0.06

Code size:
568 KB (581,632 bytes)

Scan 5a86.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.