home

dam_ay.exe

Tianjing Cheng

The executable dam_ay.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Tianjing Cheng  (signed and verified)

MD5:
5746bdf50d06444a01972ce7647b8ba9

SHA-1:
b5a88a96d87ec99bc88a39c2a5c20bdc83391e99

SHA-256:
42bc6920d6442fe4fc4687d56b0823b7cb723c5fb0a3f645c9589246cf7c1177

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
7/7/2025 12:00:55 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Win.Reputation (M)
17.2.1.1

File size:
418.4 KB (428,480 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\dam_ay.exe

Digital Signature
Signed by:
Tianjing Cheng

Authority:
thawte, Inc.

Valid from:
1/19/2017 9:00:00 PM

Valid to:
7/12/2017 8:59:59 PM

Subject:
CN=Tianjing Cheng, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
1F96016D1BE852B49F3A66ACEAF146B0

File PE Metadata
Compilation timestamp:
1/19/2017 9:39:03 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x31D4

Entry point:
E8, 22, 11, 00, 00, E9, 8A, 95, 00, 00, 55, 8B, EC, 56, 8B, 75, 08, 85, F6, 74, 1B, 6A, E0, 33, D2, 58, F7, F6, 3B, 45, 0C, 73, 0F, E8, BC, 69, 00, 00, C7, 00, 0C, 00, 00, 00, 33, C0, EB, 51, 0F, AF, 75, 0C, 85, F6, 75, 01, 46, 33, C9, 83, FE, E0, 77, 15, 56, 6A, 08, FF, 35, FC, 7D, 46, 00, FF, 15, 14, E0, 45, 00, 8B, C8, 85, C9, 75, 2A, 83, 3D, F8, 7D, 46, 00, 00, 74, 14, 56, E8, 91, 69, 00, 00, 59, 85, C0, 75, D0, 8B, 45, 10, 85, C0, 74, BC, EB, B4, 8B, 45, 10, 85, C0, 74, 06, C7, 00, 0C, 00, 00, 00, 8B...
 
[+]

Code size:
369.5 KB (378,368 bytes)

Remove dam_ay.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.