home

飞豹听音乐.exe

FeiBaoClient Module

北京莱富特佰网络科技股份有限公司

The executable 飞豹听音乐.exe has been detected as malware by 11 anti-virus scanners.
Publisher:
北京莱富特佰网络科技股份有限公司  (signed and verified)

Product:
FeiBaoClient Module

Version:
1, 0, 0, 1

MD5:
058627d984127d0c2815a94368bb5dc4

SHA-1:
099d847bcf19404bdfdce9b93a456c924b1da8bd

SHA-256:
ee3801aeb5e6cb99b5a7fa80886a5799b1babf907ecaf0b54520ed821f5892d2

Scanner detections:
11 / 68

Status:
Malware

Analysis date:
11/5/2024 8:17:28 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.12496540
85

AVG
Win32/DH{gRKBExRPAEkgIg}
2017.0.2563

Bitdefender
Trojan.Generic.12496540
1.0.20.1575

Emsisoft Anti-Malware
Trojan.Generic.12496540
8.16.11.10.10

F-Secure
Trojan.Generic.12222500
11.2016-10-11_5

G Data
Trojan.Generic.12496540
16.11.24

McAfee
Artemis!058627D98412
5600.6219

MicroWorld eScan
Trojan.Generic.12496540
17.0.0.945

Rising Antivirus
PE:Trojan.Win32.Generic.17B3668B!397633163
23.00.65.161108

Trend Micro House Call
Suspicious_GEN.F47V1111
7.2.315

VIPRE Antivirus
Trojan.Win32.Generic
36482

File size:
571 KB (584,672 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright 2014

Original file name:
FeiBaoClient.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\roaming\feibaoclient\飞豹听音乐.exe

Digital Signature
Signed by:
北京莱富特佰网络科技股份有限公司

Authority:
WoSign CA Limited

Valid from:
4/9/2014 9:03:14 AM

Valid to:
4/10/2015 9:03:14 AM

Subject:
CN=北京莱富特佰网络科技股份有限公司, E=zheng.shu@leftbrain.com.cn, O=北京莱富特佰网络科技股份有限公司, L=北京市, S=北京市, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
095509C3568F441EA00ED52EB7CB3E41

File PE Metadata
Compilation timestamp:
11/3/2014 6:02:18 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:ZdOYzhSLQQaw1Lh20VPRmHCmV6Ig8NWqjqVWqqrx7RNY:hzsaw1wWP8HCugrOqMfx7RW

Entry address:
0x30899

Entry point:
E8, F0, 96, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 50, 60, 45, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 54, 60, 45, 00, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, 66, 33, 00, 00, 85, C0, 75, 06, B8, B8, 61, 45, 00, C3, 83, C0, 08, C3, E8, 53, 33, 00, 00, 85, C0, 75, 06, B8, BC, 61, 45, 00, C3, 83, C0, 0C, C3, 8B, FF, 55, 8B, EC, 56, E8, E2, FF, FF, FF, 8B, 4D, 08...
 
[+]

Entropy:
6.3417

Code size:
273 KB (279,552 bytes)

Remove 飞豹听音乐.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.