home

chromiumupdate.exe

Chromium

Shan Feng

The application chromiumupdate.exe by Shan Feng has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a scheduled task under the Windows Task Scheduler named ChromiumUpdateTaskMachineCore triggered by a time event.
Publisher:
Shan Feng  (signed and verified)

Product:
Chromium

Version:
1.0.0.1

MD5:
d0a4e927b9ab44f6a015473531d12595

SHA-1:
95060c189c30791b70944fe08b5c730f20dfe708

SHA-256:
3434e2232f989d6e1c6f53c607e7f77809a4c75b7ae5176dc8135effe7b90f8d

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
5/14/2025 10:39:45 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Elex.ShanFeng (M)
16.7.12.10

File size:
546.9 KB (560,000 bytes)

Product version:
51.0.2704.68

Copyright:
Copyright (C) 2016 Chromium Authors

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\chromium\update\chromiumupdate.exe

Digital Signature
Signed by:
Shan Feng

Authority:
thawte, Inc.

Valid from:
7/6/2016 2:00:00 AM

Valid to:
2/4/2017 12:59:59 AM

Subject:
CN=Shan Feng, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
202D983425A6EFF444FD0490238B2EC8

File PE Metadata
Compilation timestamp:
7/7/2016 11:07:09 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
12288:KXoynoUb+cwd4L3UisNf+BOqPhNgx47fDdiM:KXo3Ub+ZQOoBOEhNgx47rdiM

Entry address:
0x47CF0

Entry point:
B8, AC, 6F, 00, 00, B2, D0, C1, 95, 92, B1, 7E, 9C, 8C, 2C, 00, C5, 16, A4, 5B, E3, 60, 00, 00, 00, 00, 33, 32, 11, 05, 0B, B4, 8F, 30, 1F, A9, 93, 6F, 0E, 92, 7B, 00, 00, 00, 00, E0, 0A, 7F, 5C, 14, 0E, 49, 42, 08, 06, 68, E3, 45, C5, B3, F1, 83, 5B, 25, 00, 68, 95, 6F, 95, 18, B2, 9C, 15, C3, 95, 92, B1, A4, DD, 7A, 9E, 09, ED, 00, 00, 00, 00, 9F, 8D, 0B, 34, C0, 5F, 00, 00, 00, 00, B2, 2E, 49, 42, 70, 34, 1B, 66, 3E, 18, 0C, D9, 17, E1, 85, EF, E7, 61, 77, 00, 5E, 8B, 0B, D9, 5A, 9A, 92, 3B, A7, 97, 7A...
 
[+]

Code size:
420.5 KB (430,592 bytes)

Scheduled Task
Task name:
ChromiumUpdateTaskMachineCore

Trigger:
Time


Remove chromiumupdate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.