taslogin.exe

TASLogin Application

Tencent Technology(Shenzhen) Company Limited

The application taslogin.exe by Tencent Technology(Shenzhen) Company Limited has been detected as a potentially unwanted program by 7 anti-malware scanners.
Remove taslogin.exe - Powered by Reason Core Security
Publisher:
Tencent  (signed by Tencent Technology(Shenzhen) Company Limited)

Product:
TASLogin Application

Version:
2, 0, 27, 26372

MD5:
d28807271c4fc02bb3f53b72efb4cbfb

SHA-1:
5eb5163c9f1a0080ceb5ba89e913d420dbfe5597

SHA-256:
b46f7b1469ed4658da511b0c26d3eb8a69fac0cdd9741ac1963db176b3a4aa28

Scanner detections:
7 / 68

Status:
Potentially unwanted

Analysis date:
12/5/2016 3:34:29 AM UTC  (today)

Scan engine
Detection
Engine version

Bitdefender
Gen:Variant.Barys.1102
1.0.20.805

Emsisoft Anti-Malware
Gen:Variant.Barys.1102
8.14.06.10.11

F-Secure
Gen:Variant.Barys.1102
11.2014-10-06_3

G Data
Gen:Variant.Barys.1102
14.6.24

MicroWorld eScan
Gen:Variant.Barys.1102
15.0.0.483

SUPERAntiSpyware
Adware.Tencent
10552

Vba32 AntiVirus
suspected of Malware-Cryptor.General.5
3.12.24.3

Remove taslogin.exe - Powered by Reason Core Security
File size:
6.4 MB (6,738,232 bytes)

Product version:
2, 0, 27, 26372

Copyright:
Copyright (C) 2012

File type:
Executable application (Win32 EXE)

Language:
Çince (Basitlestirilmis, ÇHC)

Common path:
C:\Program Files\ìúñ¶óîï·\½£áé_ìúñ¶\tcls\tenprotect\taslogin.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
1/17/2013 2:00:00 AM

Valid to:
2/17/2016 1:59:59 AM

Subject:
CN=Tencent Technology(Shenzhen) Company Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Tencent Technology(Shenzhen) Company Limited, L=shenzhen, S=guangdong, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7170BD93CF3F189AE6452B514C49340E

File PE Metadata
Compilation timestamp:
5/22/2014 10:56:46 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:QcFtKffjzK3KwN+gAxtEbsNSrBRBiVLXwIUH5FNNQWG689/5eVkkFmY5:fqXOlUgOtEbsNSpYLfUPffcsVkkFmY5

Entry address:
0xB317B

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, 40, 00, 00, 61, E9, 0B, 12, 5B, 00, E9, 99, 0D, 00, 00, E9, F4, DC, 5A, 00, D2, CC, 80, D9, 7C, F6, D1, 48, 8B, 45, 00, 9C, D2, E1, D2, D9, F8, 8A, 4D, 04, F9, 80, FB, CA, 88, 3C, 24, 66, 0F, A3, E7, 83, ED, 02, E8, A1, 00, 00, 00, 9C, 66, C1, C8, 09, F6, C3, 60, 84, D0, 66, F7, D0, F7, C5, 91, B9, 15, 36, 66, 39, EC, 66, 31, C3, 9C, F5, F5, 98, F9, E8, F5, 03, 00, 00, 66, F7, D8, 8D, 47...
 
[+]

Packer / compiler:
ASPack v2.12

Code size:
6.4 MB (6,736,896 bytes)

Remove taslogin.exe - Powered by Reason Core Security