home

baiduyunguanjia_5.4.5.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from issuecdn.baidupcs.com.
MD5:
d4a467c9bb67b2413f237396a81e8027

SHA-1:
a86a707708bd254f94a3b3afd431313cf1cb5ef9

SHA-256:
055eec4a6863f4f462f52484d4195b7d4c0331cdb755c20f9d59caa9657f12ca

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 4:20:47 PM UTC  (today)

File size:
15.2 MB (15,972,820 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\baiduyunguanjia_5.4.5.exe

File PE Metadata
Compilation timestamp:
2/25/2012 3:19:59 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
393216:7/SoRWWmAELv4L1x7nYzjO8ULK/kqYBAdlVBcX992MPGPzO1uj:WKWWmBLv45xDYzjO8EK/kq5TBcX992Mo

Entry address:
0x1A8000

Entry point:
B8, 1B, C1, D3, 02, 68, 1A, 80, 5A, 00, 5A, BE, 98, 05, 00, 00, 90, 90, 31, 04, 32, 90, 83, EE, 03, 4E, 90, 75, F5, 90, F3, BC, D2, 02, 1B, C1, D3, 02, 1B, C1, 93, 02, F8, F8, D3, 02, A3, C2, 22, 02, CF, C8, 22, 02, 1B, 71, D1, 02, 1A, C1, D3, 02, 7B, 41, 93, 02, 91, 61, 93, 02, 83, 61, 93, 02, 63, 51, D3, 02, 93, 61, D3, 02, 8D, 61, D3, 02, 7B, B5, D3, 02, 93, 61, D3, 02, 8D, 61, D3, 02, 1B, C1, D3, 02, 1B, C1, D3, 02, 1B, C1, D3, 02, 1B, C1, D3, 02, 1B, C1, D3, 02, 1B, C1, D3, 02, 1B, C1, D3, 02, 1B, C1...
 
[+]

Entropy:
7.9931  (probably packed)

Code size:
28 KB (28,672 bytes)

The file baiduyunguanjia_5.4.5.exe has been seen being distributed by the following URL.

http://issuecdn.baidupcs.com/issue/netdisk/.../BaiduYunGuanjia_5.4.5.exe

Scan baiduyunguanjia_5.4.5.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.