home

setup_open_131.exe

无极影音安装程序

Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.

Publisher:
Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.  (signed and verified)

Product:
无极影音安装程序

Version:
1.0.0.0

MD5:
56e1a64b28b2c9f321d20ae3418246e3

SHA-1:
c123bb18690b783bfceac969d8616ca8c61b1f0f

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/24/2024 6:28:24 AM UTC  (today)

Scan engine
Detection
Engine version

Vba32 AntiVirus
BScope.Malware-Cryptor.General.vp3
3.12.22.2

File size:
5.9 MB (6,225,720 bytes)

Product version:
1.0.0.0

Copyright:
Copyright (C) 2013

Original file name:
SetupApp.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\ppwdown\setup_open_131.exe

Digital Signature
Signed by:
Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.

Authority:
WoSign eCommerce Services Limited

Valid from:
4/9/2013 5:07:33 PM

Valid to:
4/12/2016 7:24:17 PM

Subject:
E=kefu@shengtaian.com, CN="Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.", O="Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.", L=Nanning, S=Guangxi Zhuangzu Zizhiqu, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign eCommerce Services Limited, C=CN

Serial number:
04071FA1A0BC9E

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:KpDhlyYTo2GjKC5XpX8nxRkb5nbps5CXBZnG+SuH3f6A7XvM8hV:WDhl8eCXX8nstWsBZnG+/va8n

Entry address:
0x5BB672

Entry point:
68, 48, F6, 1D, 2C, E8, 9C, 3B, 5E, 00, 00, 00, 4C, 6F, 61, 64, 52, 65, 73, 6F, 75, 72, 63, 65, 00, 00, 00, 4B, 69, 6C, 6C, 54, 69, 6D, 65, 72, 00, 00, 00, 45, 6E, 75, 6D, 54, 68, 72, 65, 61, 64, 57, 69, 6E, 64, 6F, 77, 73, 00, 00, 00, 47, 65, 74, 50, 69, 78, 65, 6C, 00, 00, 00, 50, 65, 65, 6B, 4D, 65, 73, 73, 61, 67, 65, 41, 00, 00, 00, 47, 65, 74, 57, 69, 6E, 64, 6F, 77, 54, 65, 78, 74, 41, 00, F6, 7A, 60, D0, C4, 29, 99, 82, F6, DC, 49, 32, 1B, 82, 17, DF, FF, 28, 46, CF, 4E, 60, 90, 50, 10, 89, 85, A4...
 
[+]

Entropy:
7.8314  (probably packed)

Code size:
11.6 MB (12,188,672 bytes)

Scan setup_open_131.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.