AlipayDownloader.exe

AlipayDownloader

Alipay.com Co.,Ltd

This is a setup program which is used to install the application. This is installed with Alipay Cert Component 2.0.0.6. The file has been seen being downloaded from 183.203.52.68 and multiple other hosts.
Publisher:
Alipay Inc.   (signed by Alipay.com Co.,Ltd)

Product:
AlipayDownloader

Version:
1, 0, 0, 1

MD5:
cfd6780c36277ae1bb7ab2fa35568c75

SHA-1:
64bb2c0e43ad1a2789064242c8a1bd66f909937e

SHA-256:
693239bd0a6f779d31b29a73af389cc2150596f85c42b9abb6dc0e6c45b1a50f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 10:11:22 AM UTC  (today)

File size:
265.7 KB (272,064 bytes)

Product version:
1, 0, 1, 0

Copyright:
Copyright ©2010-2012 Alipay Inc. All rights reserved.

Original file name:
AlipayDownloader.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\alipaydownloader.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
2/24/2011 8:00:00 AM

Valid to:
5/26/2012 7:59:59 AM

Subject:
CN="Alipay.com Co.,Ltd", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Alipay.com Co.,Ltd", L=hangzhou, S=zhejiang, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
039589E06FDD8C2FF7CEA5069C9FADD0

File PE Metadata
Compilation timestamp:
5/8/2012 6:09:54 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:yEzgY0lVNnhOTmgRGsHv2vMIKcpseGyau9vnt38Z0q3e:ZgY0lVNnhGmgRVv2vPnXlvnd8Z0Ee

Entry address:
0x97260

Entry point:
60, BE, 00, B0, 45, 00, 8D, BE, 00, 60, FA, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89...
 
[+]

Entropy:
7.8616

Packer / compiler:
UPX 2.90LZMA]

Code size:
244 KB (249,856 bytes)

The file AlipayDownloader.exe has been discovered within the following program.

Alipay Cert Component 2.0.0.6  by Alipay.com Co.,Ltd
About 4% of users remove it
 
Powered by Should I Remove It?

The file AlipayDownloader.exe has been seen being distributed by the following 6 URLs.

http://183.203.52.68/cache/download.alipay.com/sec/.../alipaydownloader.exe

http://183.207.95.62/cache/download.alipay.com/sec/.../alipaydownloader.exe

http://211.137.39.8/cache/download.alipay.com/sec/.../alipaydownloader.exe

http://120.198.236.9:9999/download.alipay.com/sec/.../alipaydownloader.exe

Scan AlipayDownloader.exe - Powered by Reason Core Security