home

kzinst.exe

Shanda Computer (Shanghai) Co., Ltd.

Publisher:
Shanda Computer (Shanghai) Co., Ltd.  (signed and verified)

Description:
tui_kz8 FileVersion

Version:
1, 0, 0, 105D

MD5:
669ca7e33810ccf02dde31f46f3916cd

SHA-1:
c1ee5fc2dd2dd0dbc5cd0f4cb7a7aad1c999bc0c

SHA-256:
f211b9e0dc1a52e31313aebe9bface70e72334ba08f8644ed80bd506cd8a9040

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 8:02:12 AM UTC  (today)

File size:
160.3 KB (164,176 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\programs\kzinst.exe

Digital Signature
Signed by:
Shanda Computer (Shanghai) Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
8/30/2013 8:00:00 AM

Valid to:
10/30/2014 7:59:59 AM

Subject:
CN="Shanda Computer (Shanghai) Co., Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Shanda Computer (Shanghai) Co., Ltd.", L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
764BABB00AEEC48D09F5DDB0F15D206C

File PE Metadata
Compilation timestamp:
11/5/2013 3:21:35 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
3072:svbLD4lTF/8b0SrXDOypXso7h9okm1yIxPvjOVarBGf:svbLmT1c/vn7EHxPvKvf

Entry address:
0x20380

Entry point:
55, 8B, EC, 83, C4, F0, 53, 56, 57, B8, 10, F9, 41, 00, E8, 6D, 65, FE, FF, BA, 38, 6A, 42, 00, B8, 08, 04, 42, 00, E8, 6A, F4, FF, FF, 84, C0, 74, 50, 8B, 1D, 38, F3, 41, 00, B8, 38, 04, 42, 00, E8, 76, C9, FE, FF, 84, C0, 74, 06, 8B, 1D, D0, E9, 41, 00, 33, D2, 55, 68, EC, 03, 42, 00, 64, FF, 32, 64, 89, 22, 8B, 0D, 34, 1D, 42, 00, 8B, 09, B2, 01, 8B, C3, FF, 50, 14, 8B, 10, FF, 52, 10, 33, C0, 5A, 59, 59, 64, 89, 10, EB, 0A, E9, 07, 3B, FE, FF, E8, 12, 3F, FE, FF, 5F, 5E, 5B, E8, 52, 43, FE, FF, 00, 00...
 
[+]

Entropy:
6.5749

Developed / compiled with:
Microsoft Visual C++

Code size:
124.5 KB (127,488 bytes)

Scan kzinst.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.