» taigjbreak_en_v245_5266.exe
Overview
Analysis
File Details
Downloads (5)

taigjbreak_en_v245_5266.exe

北京悠然天地科技有限公司

This is a setup program which is used to install the application. The file has been seen being downloaded from fixdll.info and multiple other hosts.

File name:

Publisher:

taig tools (signed by 北京悠然天地科技有限公司)

Product:

taig tools

Description:

taig tools(5266)

Version:

2.4.5.0

MD5:

7517c126bda98baab1685fbf1a0af391

SHA-1:

e802a2925e30e55feed607d98b7b3717a32ced9e

SHA-256:

a44a5037a29aeb4b0d1c3622ae5711cd1053336121f432f09a5c5cf0b058d385

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

5/21/2024 5:48:01 PM UTC (today)

File size:

67.4 MB (70,634,504 bytes)

Product version:

2.4.5.0

Original file name:

taig tools

File type:

Executable application (Win32 EXE)

Language:

English

Common path:

C:\users\{user}\downloads\taigjbreak_en_v245_5266.exe

Digital Signature

Signed by:

北京悠然天地科技有限公司

Authority:

GlobalSign nv-sa

Valid from:

1/6/2015 5:24:34 AM

Valid to:

1/7/2016 5:24:34 AM

Subject:

CN=北京悠然天地科技有限公司, O=北京悠然天地科技有限公司, L=北京, S=北京, C=CN

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

1121995FF374E7AC48800B98E7E07A4A03C7

File PE Metadata

Compilation timestamp:

12/24/2015 9:49:53 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

1572864:pU9Hf7b1M8d4LxRH1IB2oOQHli3Axd7a9GP3AtOkxFumI:i57RM8d49ReIvQFuC+9GP3AtXxa

Entry address:

0x8687687

Entry point:

EB, 08, E6, BF, 03, 00, 00, 00, 00, 00, E9, 84, 26, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.9993 (probably packed)

Code size:

67 MB (70,232,064 bytes)

The file taigjbreak_en_v245_5266.exe has been seen being distributed by the following 5 URLs.

http://fixdll.info/.../5818_taigjbreak_en_v245_5266.exe

temp:TaiGJBreak_EN_v245_5266.exe

http://nawaf-blog.com/?download=1396

http://lnkr.us/get?sourceId=5&uid=49581x1264x&format=go&host=metrext.com&out=http://res.taig.com/installer/.../TaiGJBreak_EN_v245_5266.exe&ref=http://www.taig.com/.../&fic=1

http://res.taig.com/installer/.../TaiGJBreak_EN_v245_5266.exe

Scan taigjbreak_en_v245_5266.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.