» 2zq5zgunedl1oq4vixdfyjuxy9qppygjpvawm1yq96b03zhdw9u9rmdtfdiixd2fdbmu0slczclpatg9bodkarbb6joefxkbyjai
Overview
Analysis
File Details

2zq5zgunedl1oq4vixdfyjuxy9qppygjpvawm1yq96b03zhdw9u9rmdtfdiixd2fdbmu0slczclpatg9bodkarbb6joefxkbyjai

Haitao Gu

The file 2zq5zgunedl1oq4vixdfyjuxy9qppygjpvawm1yq96b03zhdw9u9rmdtfdiixd2fdbmu0slczclpatg9bodkarbb6joefxkbyjai by Haitao Gu has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

Publisher:

Haitao Gu (signed and verified)

MD5:

d80f0d2d0bcbb831b197c9d7426a398a

SHA-1:

13e3f4d24d9bdbdb05c5882b024c9db44dbb0532

SHA-256:

f1208ce658ca3bc809cf2d9b12ee2feab8e770869b76447c5b10a45b340295e4

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

12/29/2024 3:06:00 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Adware.Elex.HG (M)

17.3.8.12

File size:

718.5 KB (735,744 bytes)

Common path:

C:\users\{user}\downloads\2zq5zgunedl1oq4vixdfyjuxy9qppygjpvawm1yq96b03zhdw9u9rmdtfdiixd2fdbmu0slczclpatg9bodkarbb6joefxkbyjai7eg1gbcgy+kzlvpnhvxvapsfnyik4sdt7v6fkghlh_+bbezt9hxlkdp4yhk9sbwxrwfvwmcunticd1btkbujd_nfnyh1+6vkulxht3ttucrnpwd3m2hi20ybaw.msi

Digital Signature

Signed by:

Haitao Gu

Authority:

thawte, Inc.

Valid from:

1/23/2017 2:00:00 AM

Valid to:

8/19/2017 2:59:59 AM

Subject:

CN=Haitao Gu, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:

CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:

1AC5EF44D5DCCF6A8EADF5A2D9753E0B

Remove 2zq5zgunedl1oq4vixdfyjuxy9qppygjpvawm1yq96b03zhdw9u9rmdtfdiixd2fdbmu0slczclpatg9bodkarbb6joefxkbyjai - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.