home

4997setup.exe

东莞市金斧子网络科技有限公司

This is a setup and installation application.
Publisher:
东莞市金斧子网络科技有限公司  (signed and verified)

MD5:
c2e1189226abe95beeaf35bc8a636dfe

SHA-1:
41327ae9a27ad6a19ebccbc6ed24c2a2d7f259bc

SHA-256:
3d4564247e9b555e15753b304830b32fbd38d3327e48f365716f33d2d83f3460

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
1/13/2025 6:44:25 AM UTC  (today)

File size:
2.9 MB (3,069,904 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\internet explorer\4997setup.exe

Digital Signature
Signed by:
东莞市金斧子网络科技有限公司

Authority:
WoSign CA Limited

Valid from:
10/23/2015 3:21:00 PM

Valid to:
11/23/2016 3:21:00 PM

Subject:
CN=东莞市金斧子网络科技有限公司, E=3189255925@qq.com, O=东莞市金斧子网络科技有限公司, L=东莞市, S=广东省, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
5002674B14FB61E69C0EEFB262234238

File PE Metadata
Compilation timestamp:
10/26/2016 3:14:53 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x1128B

Entry point:
E8, CF, 81, 00, 00, E9, 7F, FE, FF, FF, 55, 8B, EC, 56, 8B, F1, 8B, 4D, 08, C6, 46, 0C, 00, 85, C9, 75, 66, 57, E8, 50, 19, 00, 00, 8B, F8, 89, 7E, 08, 8B, 57, 6C, 89, 16, 8B, 4F, 68, 89, 4E, 04, 3B, 15, E4, 5A, 43, 00, 74, 11, A1, A8, 5B, 43, 00, 85, 47, 70, 75, 07, E8, A1, 85, 00, 00, 89, 06, 8B, 46, 04, 5F, 3B, 05, 84, 58, 43, 00, 74, 15, 8B, 4E, 08, A1, A8, 5B, 43, 00, 85, 41, 70, 75, 08, E8, 03, 89, 00, 00, 89, 46, 04, 8B, 4E, 08, 8B, 41, 70, A8, 02, 75, 16, 83, C8, 02, 89, 41, 70, C6, 46, 0C, 01, EB...
 
[+]

Entropy:
7.9624  (probably packed)

Code size:
149.5 KB (153,088 bytes)

Scan 4997setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.