home

chromium.exe

Chromium

Shan Feng

The application chromium.exe by Shan Feng has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Shan Feng  (signed and verified)

Product:
Chromium

Version:
1.0.0.1

MD5:
25acfa6d1c065fe365d3da8cee5e9668

SHA-1:
546d463faad3f46903d7b9fe25279df92fef92b2

SHA-256:
0aa2818a646f629129e5d4d6747a2aa2f5c0f69fea283460fd0431ee8f27e0b5

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/16/2024 3:56:59 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Elex.ShanFeng (M)
16.7.12.6

File size:
412.9 KB (422,784 bytes)

Product version:
51.0.2704.66

Copyright:
Copyright (C) 2016 Chromium Authors

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\ProgramData\chromium\chromium.exe

Digital Signature
Signed by:
Shan Feng

Authority:
thawte, Inc.

Valid from:
6/29/2016 3:00:00 AM

Valid to:
2/4/2017 1:59:59 AM

Subject:
CN=Shan Feng, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
6D191BE004B8E4146D7EC4DE335D968E

File PE Metadata
Compilation timestamp:
6/30/2016 7:12:46 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
12288:X3vq8wo3p5pAAeqnSBwf9yTXKzy+/gKn+:X3vjwo5fAQOGzvgKn+

Entry address:
0x2CF91

Entry point:
B9, CD, 75, 00, 00, 92, D1, C1, 8D, 91, 9D, 5E, 15, EC, 36, 00, E9, 36, A5, 5B, FB, 63, 00, 00, 00, 00, 2B, 31, 3D, 25, 0A, B4, 97, 33, 33, 89, 92, 6F, 16, 91, 57, 00, 00, 00, 00, E3, 26, 5F, 5D, 14, 16, 4A, 6E, 28, 07, 68, FB, 46, E9, 93, F0, 83, 63, 28, 00, 48, 94, 6F, 8D, 1B, 9E, BC, 14, C3, 8D, 91, 9D, 84, DC, 7A, 86, 0A, C1, 00, 00, 00, 00, 9C, A1, 2B, 35, C0, 47, 00, 00, 00, 00, B2, 36, 4A, 6E, 50, 35, 1B, 7E, 3D, 34, 2C, D8, 17, F9, 86, C3, C7, 40, 79, 00, 5D, A7, 2B, D8, 5A, 82, 91, 17, 87, 96, 7A...
 
[+]

Code size:
304 KB (311,296 bytes)

Remove chromium.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.