home

zoho-migration.exe

ZOHOSDK

ZOHO Corporation

Publisher:
ZOHO Corporation

Product:
ZOHOSDK

Version:
2.0.*

MD5:
78d73f67897096aa3029627a749bd6fc

SHA-1:
a00307445e0a658456d322d592b1cea77136bbd5

SHA-256:
75dd2ce1d4f0f131cb58c61510d24fa641959688f90a5ff3f4153debfbedfb03

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/24/2024 8:23:48 PM UTC  (today)

Scan engine
Detection
Engine version

Emsisoft Anti-Malware
Win32.Neshta
8.14.05.12.07

Trend Micro House Call
TROJ_GEN.F47V1020
7.2.132

File size:
463 KB (474,112 bytes)

Product version:
2.0.*

Copyright:
© 2009 Zoho Corp.

Original file name:
ZOHOIDE.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\zoho-migration.exe

File PE Metadata
Compilation timestamp:
8/11/2013 1:14:13 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:VK748K74qK74BK74lK74V7JBK74kK74XwuZNYK5OD9K74:LJKYKi

Entry address:
0x6D40E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.6350

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
429.5 KB (439,808 bytes)

The file zoho-migration.exe has been seen being distributed by the following URL.

http://www.zoho.com/creator/.../zoho-migration.exe

Scan zoho-migration.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.