jyzj-patch-0.0.1.108-0.0.1.109.exe

Microsoft Windows Operating System

SuZhou Snail Digital Technology Co., Ltd

Publisher:
Microsoft Corporation  (signed by SuZhou Snail Digital Technology Co., Ltd)

Product:
Microsoft(R) Windows(R) Operating System

Description:
Win32 Cabinet Self-Extractor

Version:
6.00.2900.5512 (xpsp.080413-2105)

MD5:
48aee17d08fd71c53dd260db73e148e4

SHA-1:
731bed3bafe33165a590a6819ac0454b253a58e6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
6/20/2018 1:18:53 AM UTC  (today)

File size:
3.7 MB (3,923,584 bytes)

Product version:
6.00.2900.5512

Copyright:
(C) Microsoft Corporation. All rights reserved.

Original file name:
WEXTRACT.EXE

File type:
Executable application (Win32 EXE)

Language:
Chinese (PRC)

Common path:
C:\Documents and Settings\{user}\Local settings\temp\{random}.tmp\jyzj-patch-0.0.1.108-0.0.1.109.exe

Digital Signature
Authority:
Thawte, Inc.

Valid from:
8/1/2013 8:00:00 AM

Valid to:
8/2/2015 7:59:59 AM

Subject:
CN="SuZhou Snail Digital Technology Co., Ltd", OU=IT, O="SuZhou Snail Digital Technology Co., Ltd", L=suzhou, S=jiangsu, C=CN

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
24ED4696D3D58E409A6832455C26633A

File PE Metadata
Compilation timestamp:
4/14/2008 2:32:45 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

Entry address:
0x645C

Entry point:
E8, 0A, 00, 00, 00, E9, 7A, FF, FF, FF, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 83, EC, 10, A1, D0, B2, 00, 01, 85, C0, 74, 07, 3D, 40, BB, 00, 00, 75, 4D, 56, 8D, 45, F8, 50, FF, 15, 70, 11, 00, 01, 8B, 75, FC, 33, 75, F8, FF, 15, 6C, 11, 00, 01, 33, F0, FF, 15, 68, 11, 00, 01, 33, F0, FF, 15, 64, 11, 00, 01, 33, F0, 8D, 45, F0, 50, FF, 15, 60, 11, 00, 01, 8B, 45, F4, 33, 45, F0, 33, C6, 25, FF, FF, 00, 00, 5E, 75, 05, B8, 40, BB, 00, 00, A3, D0, B2, 00, 01, F7, D0, A3, CC, B2, 00, 01, C9, C3, CC, CC, CC...
 
[+]

Entropy:
7.9970

Developed / compiled with:
Microsoft CAB SFX

Code size:
38.5 KB (39,424 bytes)

Scan jyzj-patch-0.0.1.108-0.0.1.109.exe - Powered by Reason Core Security