home

cu_.exe

Razer USA Ltd.

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer.
Publisher:
Razer USA Ltd.  (signed and verified)

MD5:
801d1a143248a95d3bf44318c75326a0

SHA-1:
31ffe04995b32933b0afa295930e6cb44cd8bf5f

SHA-256:
a5a2013e30294ea12b8c66524d3a3cc7d2dcf699bf6f9aee1c1e0080e8b7a3ef

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 8:32:02 PM UTC  (today)

File size:
39.2 KB (40,096 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\cu_.exe

Digital Signature
Signed by:
Razer USA Ltd.

Authority:
Symantec Corporation

Valid from:
2/10/2016 8:00:00 AM

Valid to:
2/8/2019 7:59:59 AM

Subject:
CN=Razer USA Ltd., O=Razer USA Ltd., L=Irvine, S=California, C=US

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
1834B81889070312B5C4CA72EA419A5E

File PE Metadata
Compilation timestamp:
4/2/2016 11:20:05 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x30FB

Entry point:
81, EC, 84, 01, 00, 00, 53, 55, 56, 57, 33, DB, 68, 01, 80, 00, 00, 89, 5C, 24, 20, C7, 44, 24, 14, 68, 91, 40, 00, 89, 5C, 24, 1C, C6, 44, 24, 18, 20, FF, 15, B0, 70, 40, 00, FF, 15, AC, 70, 40, 00, 66, 3D, 06, 00, 74, 11, 53, E8, EF, 2D, 00, 00, 3B, C3, 74, 07, 68, 00, 0C, 00, 00, FF, D0, BE, 80, 72, 40, 00, 56, E8, 6B, 2D, 00, 00, 56, FF, 15, 08, 71, 40, 00, 8D, 74, 06, 01, 38, 1E, 75, EB, 6A, 0D, E8, C3, 2D, 00, 00, 6A, 0B, E8, BC, 2D, 00, 00, A3, 44, 3F, 42, 00, FF, 15, 38, 70, 40, 00, 53, FF, 15, 6C...
 
[+]

Entropy:
6.6004

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

Scan cu_.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.