home

5dqzxeht.exe

Downloader

上海旭岑投资合伙企业(有限合伙)

Publisher:
上海旭岑投资合伙企业(有限合伙)  (signed and verified)

Product:
Downloader

Version:
6.0.0.1

MD5:
f5b1770e98d5c2ae38dd20cadb1e353f

SHA-1:
d40adf1fd857d02829683e903d5d23e9bf961bc0

SHA-256:
d470197e2df23b94c56e22b687b6f435fea0a8115703b4c563662271c847b31c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 2:58:26 AM UTC  (today)

File size:
618.3 KB (633,168 bytes)

Product version:
6.0.0.1

Original file name:
Downloader

Common path:
C:\users\{user}\appdata\local\temp\5dqzxeht.exe.part

Digital Signature
Signed by:
上海旭岑投资合伙企业(有限合伙)

Authority:
Symantec Corporation

Valid from:
9/19/2016 8:00:00 AM

Valid to:
9/20/2017 7:59:59 AM

Subject:
CN=上海旭岑投资合伙企业(有限合伙), OU=IT部, O=上海旭岑投资合伙企业(有限合伙), L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0A2ABA6B7A02E3C373FD2C654B311B19

The file 5dqzxeht.exe has been seen being distributed by the following 7 URLs.

http://xiazai.zol.com.cn/down.php?softid=122319&subcateid=56&site=10&checkStr=7346737a124009e0b&pos=downloader_main&rand=eacd58

http://down9057.yzzzn.com/?/206624/.../??L¼?????????2016 1.0 ??????ð?.exe

http://down412282.xiazai3.net/cx/160624/.../pagemaager??exe@102_1276919.exe

http://down9202.yzzzn.com/?/10225/.../MySQL???v5.7.1664????.exe

http://www.126xiazai.com/down_1783663.html

http://xiazai.zol.com.cn/down.php?softid=122319&subcateid=56&site=10&checkStr=7346737a124009e0b&pos=downloader_main&rand=d75a81

http://down8900.yzzzn.com/?/10344/.../KMPlayer??????4.1.5.6?????.exe

Scan 5dqzxeht.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.