home

2cxqqi99n7xy2ecxu8qsqc7aybp8xu5ofgfcg3uwjksfyzckys2n4lg3wglcitur7yrtq+syapm0ms_kyfln3hqjqcexjm3+yydm

Haitao Gu

The file 2cxqqi99n7xy2ecxu8qsqc7aybp8xu5ofgfcg3uwjksfyzckys2n4lg3wglcitur7yrtq+syapm0ms_kyfln3hqjqcexjm3+yydm by Haitao Gu has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Haitao Gu  (signed and verified)

MD5:
1c3af5e2ecfca306fbb8fee6de78313e

SHA-1:
438aed869cc8672c9150c4ae139d899cc7f2aba4

SHA-256:
127642cb9656f3137f1b8e5053f82effc76dc10602aa8234be10d30625eebbef

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
2/26/2025 8:52:23 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Elex.HG (M)
17.3.1.3

File size:
719 KB (736,256 bytes)

Common path:
C:\users\{user}\downloads\2cxqqi99n7xy2ecxu8qsqc7aybp8xu5ofgfcg3uwjksfyzckys2n4lg3wglcitur7yrtq+syapm0ms_kyfln3hqjqcexjm3+yydmhnp0imeagfyjy2c+ozippw5fj_w7scowkewox5mkhxbndwuhtcssujvus04wdjryyz9dfznd9kbgmceahrzhvx0rqhei6i3+c53_ydor9c17p+rjtjny.msi

Digital Signature
Signed by:
Haitao Gu

Authority:
thawte, Inc.

Valid from:
1/22/2017 9:00:00 PM

Valid to:
8/18/2017 8:59:59 PM

Subject:
CN=Haitao Gu, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
1AC5EF44D5DCCF6A8EADF5A2D9753E0B

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.