home

bdcalendar_setup-90008764-1_1_0_204-111.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from cdn.client.baidu.com.
MD5:
871678593a0b5e05e0dd43342527ab13

SHA-1:
2444e542c667294d9091a740b1a354a62b77bf9b

SHA-256:
5896e48e1b546a867a4e0a0cdb1d4eaf6606d2da1aa46edfa58bf10854ced20c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 1:59:01 PM UTC  (today)

File size:
226.5 KB (231,942 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\content.ie5\7bksemod\bdcalendar_setup-90008764-1_1_0_204-111.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
3072:dExwBf768ViTC9EU5mJwihUuFcJUTpcfQ4icnBT4Si2Q+RIoLe5gGl7iS:+wB+/TNUwjh4Q4ichvi/uIoLe/US

Entry point:
4D, 53, 43, 46, 00, 00, 00, 00, 06, 8A, 03, 00, 00, 00, 00, 00, 2C, 00, 00, 00, 00, 00, 00, 00, 03, 01, 01, 00, 02, 00, 00, 00, D1, 08, 00, 00, 6A, 00, 00, 00, 13, 00, 03, 15, 48, 53, 09, 00, 00, 00, 00, 00, 00, 00, E9, 44, BD, 81, 20, 00, 42, 44, 53, 47, 50, 72, 6F, 78, 79, 44, 6C, 6C, 2E, 64, 6C, 6C, 00, 95, 05, 00, 00, 48, 53, 09, 00, 00, 00, D3, 44, 65, 56, 20, 00, 32, 30, 30, 30, 30, 37, 30, 31, 2E, 78, 6D, 6C, 00, B0, 75, 44, 5F, 1A, 2C, 00, 80, 5B, 80, 80, 8D, 3D, 10, 00, 56, 00, 00, 22, 53, 60, 24...
 
[+]

Entropy:
7.9987  (probably packed)

The file bdcalendar_setup-90008764-1_1_0_204-111.exe has been seen being distributed by the following URL.

http://cdn.client.baidu.com/bdcalendar/repository/.../bdcalendar_setup-90008764-1_1_0_204-111.exe

Scan bdcalendar_setup-90008764-1_1_0_204-111.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.