home

baidu_advancedcalendar_20150904043935_0229.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from cdn.kmplayer.com.
MD5:
47840368e9ba63f5172435f564f92aeb

SHA-1:
f6aeb056c34cc12e72b1148888e998fe3c230812

SHA-256:
dd669efbefe6183648e994787a592519389df392e0653fe27875d36fe616f97e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 8:24:59 AM UTC  (today)

File size:
1.9 MB (1,975,770 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\baidu_advancedcalendar_20150904043935_0229.exe

File PE Metadata
Compilation timestamp:
2/25/2012 2:19:59 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
49152:ZfBIfudVuUpKyxOZ4aCV0KQgipRdXXg32yt8h93Z:ZfCuXuUpKyxOZ4aCV01HBXt3Z

Entry address:
0x136000

Entry point:
68, BC, EF, 4F, 00, 59, 90, 90, 68, 20, 60, 53, 00, 5E, BF, 98, 05, 00, 00, 90, 90, FF, 34, 3E, 31, 0C, 24, 8F, 04, 3E, 83, EF, 04, 90, 75, F1, 54, 92, 4E, 00, BC, EF, 4F, 00, BC, EF, 0F, 00, 5F, D6, 4F, 00, 21, 81, 54, 00, 66, 9A, 54, 00, BC, 5F, 4D, 00, BD, EF, 4F, 00, DC, 6F, 0F, 00, 36, 4F, 0F, 00, 24, 4F, 0F, 00, C4, 7F, 4F, 00, 34, 4F, 4F, 00, 2A, 4F, 4F, 00, DC, 9B, 4F, 00, 34, 4F, 4F, 00, 2A, 4F, 4F, 00, BC, EF, 4F, 00, BC, EF, 4F, 00, BC, EF, 4F, 00, BC, EF, 4F, 00, BC, EF, 4F, 00, BC, EF, 4F, 00...
 
[+]

Entropy:
7.9926  (probably packed)

Code size:
28 KB (28,672 bytes)

The file baidu_advancedcalendar_20150904043935_0229.exe has been seen being distributed by the following URL.

http://cdn.kmplayer.com/KMP/player/download/.../Baidu_AdvancedCalendar_20150904043935_0229.exe

Scan baidu_advancedcalendar_20150904043935_0229.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.