bavpro_setup_mini_201.exe

Baidu Antivirus

Baidu Online Network Technology (Beijing)Co., Ltd

This is a self-extracting archive and installer. The file has been seen being downloaded from ny.offers.multiinstall.com and multiple other hosts.
Publisher:
Baidu, Inc.  (signed by Baidu Online Network Technology (Beijing)Co., Ltd)

Product:
Baidu Antivirus

Description:
Baidu Antivirus Mini Setup

Version:
4,8,0,66919

MD5:
cf8db45c0098c7c16f0bcdae27bf8a1e

SHA-1:
8c002ad09a870fe9388ac2c2f871cd79ff26131d

SHA-256:
1042c828d8e03701e3629f17734add4585ff2edc1cce063e056f02005761da99

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/24/2024 4:42:27 PM UTC  (today)

File size:
1.2 MB (1,291,624 bytes)

Product version:
4,8,0,66919

Copyright:
Copyright (C) 2013 Baidu, Inc. All rights reserved.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\bavpro_setup_mini_201.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
4/23/2012 9:00:00 PM

Valid to:
4/24/2015 8:59:59 PM

Subject:
CN="Baidu Online Network Technology (Beijing)Co., Ltd", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Baidu Online Network Technology (Beijing)Co., Ltd", L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3BDB1994B98BBB19AB55A42337FA4F5C

File PE Metadata
Compilation timestamp:
4/24/2014 9:33:50 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:CV1JbDie3xE+VylxgusRLXulqaVXB4vp/AE3jShZ:4P6+exybGqOPE3jShZ

Entry address:
0xA9468

Entry point:
E8, 72, D2, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, 7D, 08, 00, 74, 17, FF, 75, 1C, FF, 75, 18, FF, 75, 14, FF, 75, 10, FF, 75, 0C, E8, 8C, DC, FF, FF, 83, C4, 14, 5D, C3, 8B, FF, 55, 8B, EC, 83, EC, 14, 53, 33, DB, 56, 8B, 75, 08, 89, 5D, F8, 89, 5D, F4, 89, 5D, FC, 3B, F3, 75, 1E, E8, 80, 39, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, BE, DD, FF, FF, 83, C4, 14, 8B, C6, E9, 3B, 02, 00, 00, 57, 6A, 24, 68, FF, 00, 00, 00, 56, E8, D2, CC, FF, FF, 8B, 7D, 0C, 83, C4, 0C, 3B, FB, 75, 19...
 
[+]

Code size:
984 KB (1,007,616 bytes)

The file bavpro_setup_mini_201.exe has been seen being distributed by the following 49 URLs.

http://ny.offers.multiinstall.com/17bc7bfb81514e9c93c834ef02bf6d2ab56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/06e3ab91bdc43b9c95b1cc641a8092fab56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/a6b4593b5728ce054e4f7a719dc844d8b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/5be7bee15af2f8d638f0e999610a34a4b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/508ddc5c0b6e6ce2fe24b3048c14241cb56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/972390de8e28e39c27a0036211004d55b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/e098d493304e8446385946f00631d32bb56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/ea7bfe711e7353f219df7406ccd3382cb56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/35de60c61fa9afed8a0270f41fde35fab56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/46ae35c26c1f14a59aa536814048b278b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/37de385fd7d303b447c544c728745507b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/d97673cad2baa5a7b9e47e8c757db3e6b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/bbf406b3e74f3807fe6c11199169f3f7b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/0e966bc622eb82101c7c2e6a3025348fb56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/93ee091c594d35a79744e5a19a5d51c0b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/7739ecca6686a0e0b96e0655f19e386eb56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/f2f9c9976fcf16bfc509c4b7db590ad7b56724d020da93254196ae4c2f619b7d.exe

http://ny.offers.multiinstall.com/f634465a91f82ca069d94aa5b02a5830b56724d020da93254196ae4c2f619b7d.exe

http://multinstall.com.br/.../2c8608f4358de76a68970025c7302ddf.exe

Latest 30 of 49 download URLs

Scan bavpro_setup_mini_201.exe - Powered by Reason Core Security