home

xroutermans.exe

Beijing Full Speed Network Technology Co., Ltd.

It runs as a separate (within the context of its own process) windows Service named “X-Router Manage Service”.
Publisher:
Beijing Full Speed Network Technology Co., Ltd.  (signed and verified)

MD5:
935fe5c0f686fca4a01c64b696c75f3a

SHA-1:
5b96fe3a22f7f48a594053416c6ac0e22b6eafee

SHA-256:
c79ef415b0e1c11a0ffb20060c036f220a197f2c573eab9d0f76f6e58cfd8b35

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 8:45:16 AM UTC  (today)

File size:
6 MB (6,311,384 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Beijing Full Speed Network Technology Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
9/18/2015 8:00:00 AM

Valid to:
9/18/2017 7:59:59 AM

Subject:
CN="Beijing Full Speed Network Technology Co., Ltd.", O="Beijing Full Speed Network Technology Co., Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
35B94513479B42A3DDA30D644E60726B

File PE Metadata
Compilation timestamp:
10/15/2015 3:27:41 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:PWUZvs+3Pl9MhOlScv6nfckvJCHn4GxF7zdjlIndkl38i35aPRS4wtc:+UZBd9MkScEJWLdjWk35ftc

Entry address:
0x683243

Entry point:
68, 7D, AF, 24, 33, 60, 60, C7, 44, 24, 40, 1F, AF, B5, FE, E8, 32, 08, 00, 00, E9, 35, D5, FC, FF, 8D, D0, B0, F5, D3, A2, 9A, 4B, A8, F1, 6A, 1B, EC, 07, 6E, 48, 9E, 77, 41, 52, A4, F2, 8C, B7, 8A, A4, 08, 64, 61, 6E, 63, 3D, E9, 06, A2, C3, 51, 79, 83, 22, 26, 01, D0, 30, 67, 43, 6C, 46, 8B, 34, 53, 5B, A7, 1F, F2, 8A, 10, 5B, 6F, 4E, AB, E3, 57, A7, 7A, D3, DB, 26, 92, E3, 4B, D5, 89, 09, 01, D4, 40, 7B, 4C, 53, 7B, F0, 93, 4A, FD, 05, 83, 14, BA, EE, B5, 2F, AB, 5B, 51, 17, A3, 7D, 69, 4E, 42, 5A, F6...
 
[+]

Entropy:
7.8606  (probably packed)

Code size:
1 MB (1,075,200 bytes)

Service
Display name:
X-Router Manage Service

Service name:
XRouterManService

Type:
Win32OwnProcess

Depends on:
XRouterService


Scan xroutermans.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.