home

DazoneFileMove.exe

DazoneFileMove

Dazone Tech Inc.

Publisher:
Dazone Tech Inc.  (signed and verified)

Product:
DazoneFileMove

Version:
1, 0, 0, 2

MD5:
dfeaa0675972823df24c13a564b74077

SHA-1:
cf5bf123ce147baba200cc9d9569ab220dd42c95

SHA-256:
21fe5d6ba8a30461be4785eef35e5a66a60b6a9dbc12d7fde250b01aaae24c0c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/16/2024 3:59:51 AM UTC  (today)

File size:
81.6 KB (83,528 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright (c) - 2009 Dazone Inc

Original file name:
DazoneFileMove.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Windows\System32\dazonefilemove.exe

Digital Signature
Signed by:
Dazone Tech Inc.

Authority:
Thawte, Inc.

Valid from:
12/24/2012 9:00:00 AM

Valid to:
2/23/2015 8:59:59 AM

Subject:
CN=Dazone Tech Inc., OU=EP Team, O=Dazone Tech Inc., L=Seocho-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
53C3F89C9C9B2C2E8E7909234622FDBC

File PE Metadata
Compilation timestamp:
9/25/2009 10:34:28 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
384:L8BMLacSPsmn+di6bHR2bji4jLd9tPNUaCFzYvw1xq3UZU9a1xq3UZU9rsOnxx0o:L8BOGUmkiSgnvpNUP5YSZU9QZU9QOsrk

Entry address:
0x1222

Entry point:
6A, 60, 68, F8, 40, 40, 00, E8, C2, 04, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, 66, 10, 00, 00, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, 54, 40, 40, 00, 8B, 4E, 10, 89, 0D, 20, 53, 40, 00, 8B, 46, 04, A3, 2C, 53, 40, 00, 8B, 56, 08, 89, 15, 30, 53, 40, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, 24, 53, 40, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, 24, 53, 40, 00, C1, E0, 08, 03, C2, A3, 28, 53, 40, 00, 33, F6, 56, 8B, 3D, 44, 40, 40, 00, FF, D7, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03...
 
[+]

Entropy:
4.8826

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
12 KB (12,288 bytes)

ActiveX Install
Name:
{FC9BA5C6-2524-43E0-B89B-07A4546157E8}


Scan DazoneFileMove.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.