807 network joystick(4a12k)3.70a.exe

Shen Zhen Dragon Rise Macro Technology Limited Company

This is a setup program which is used to install the application. The file has been seen being downloaded from doc-00-5k-docs.googleusercontent.com and multiple other hosts.
MD5:
88f5cc8e8372a5d52a27abf323349eec

SHA-1:
c3cfb9ffde496dacd81eb3c01327dfe56e99110e

SHA-256:
9633f28222499ee0916324a715523960bdd3c5167195744665d7c6f5a399d4e6

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 12:40:19 PM UTC  (today)

Scan engine
Detection
Engine version

SUPERAntiSpyware
Trojan.Agent/Gen-Dropper
10540

File size:
2.1 MB (2,207,264 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
1/3/2008 2:00:00 AM

Valid to:
1/3/2009 1:59:59 AM

Subject:
CN=Shen Zhen Dragon Rise Macro Technology Limited Company, OU=Engineering, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Shen Zhen Dragon Rise Macro Technology Limited Company, L=Shen Zhen, S=Guang Dong Province, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
290BB7833C765B9A46AA792D59CCAEE5

File PE Metadata
Compilation timestamp:
9/20/2007 3:34:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
49152:Z8RM8+uAHhlvW850IDoxJvUHC4ZzqEkbzItg:q+5LJGIDoP4CqzqEkbz6g

Entry address:
0x1000

Entry point:
E8, F3, 2A, 00, 00, 50, E8, 3B, 33, 01, 00, 00, 00, 00, 00, 90, 55, 8B, EC, 53, 56, 57, 8B, 7D, 10, 8B, 5D, 0C, 8B, 75, 08, 8B, D3, FF, 75, 14, 68, E1, 50, 41, 00, 6A, 00, 6A, 00, 8B, C6, 8B, CF, E8, A2, 47, 00, 00, 81, EB, 10, 01, 00, 00, 74, 05, 4B, 74, 14, EB, 57, FF, 75, 14, 6A, 66, 56, E8, 9A, 35, 01, 00, B8, 01, 00, 00, 00, EB, 47, 66, 81, E7, FF, FF, 66, FF, CF, 74, 07, 66, FF, CF, 74, 23, EB, 30, 68, 80, 00, 00, 00, 68, A4, 69, 41, 00, 6A, 65, 56, E8, E0, 34, 01, 00, 6A, 01, 56, E8, BA, 34, 01, 00...
 
[+]

Code size:
80 KB (81,920 bytes)

The file 807 network joystick(4a12k)3.70a.exe has been seen being distributed by the following 12 URLs.

https://doc-00-5k-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/kr7fu84bkmsm7n7s7bdtk3f2gjdso95r/1482890400000/07505459770275641242/.../0BzcInR9i3-lzSmdLckRXbUY2Mm8?e=download

http://dc361.4shared.com/download/.../807_Network_Joystick_4a12k_370.exe

http://ad-file.com/download/6MrsPX8bV/.../807 Network Joystick(4a12k)3.70a.exe

https://doc-0c-bo-docs.googleusercontent.com/docs/securesc/8r9vfea737510gt710cb12e9dcc0td22/fefigedua68lhfe447kvgti2hh28uats/1478671200000/07505459770275641242/.../0BzcInR9i3-lzSmdLckRXbUY2Mm8?e=download

http://rgho.st/download/6MrsPX8bV/.../807 Network Joystick(4a12k)3.70a.exe

temp:ANITECH J236 Gamepad Driver.exe

https://docs.google.com/uc?id=0B6X6eG1AGtEmb2pKSjZHWU9BOGc&export=download

https://doc-0c-54-docs.googleusercontent.com/docs/securesc/j1rbcogttgbuc831gulvh85ctum9tvsc/bjh0iq8cicdg7uapnhshu2o7on9kp745/1475596800000/07505459770275641242/.../0BzcInR9i3-lzSmdLckRXbUY2Mm8?e=download

https://download.wetransfer.com/wetransfer-eu1/.../ACME GA07 Driver.exe

Scan 807 network joystick(4a12k)3.70a.exe - Powered by Reason Core Security