» CocCocUpdate.exe
Overview
Analysis
File Details

CocCocUpdate.exe

CocCoc Update

COC COC COMPANY LIMITED

The executable CocCocUpdate.exe has been detected as malware by 8 anti-virus scanners.

File name:

CocCocUpdate.exe

Publisher:

Coc Coc Co., Ltd. (signed by COC COC COMPANY LIMITED)

Product:

CocCoc Update

Version:

1.3.39.21

MD5:

e60331d21effd42f4b8fe7ba01e62cc3

SHA-1:

066514c1700eea865f633c15d9cb959ddb0d1378

Scanner detections:

8 / 68

Status:

Malware

Analysis date:

11/23/2024 9:26:11 AM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Mabezat [Wrm]

160917-0

AVG

Win32/Mabezat

2013.0.4756

Clam AntiVirus

Win.Trojan.Mabezat-2

0.98/23201

Dr.Web

Win32.HLLW.Tazebama

9.0.1.05190

ESET NOD32

Win32/Mabezat.A virus

6.3.12010.0

F-Prot

W32/Mabezat.A-2

4.6.5.141

F-Secure

Win32.Worm.Mabezat.Gen

5.16.24

Kaspersky

Worm.Win32.Mabezat

15.0.2.529

File size:

290.1 KB (297,015 bytes)

Product version:

1.3.39.21

Original file name:

CocCocUpdate.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Documents and Settings\{user}\Application data\coccoc\update\coccocupdate.exe

Digital Signature

Signed by:

COC COC COMPANY LIMITED

Authority:

GlobalSign nv-sa

Valid from:

3/6/2015 4:48:58 PM

Valid to:

6/6/2016 4:48:58 PM

Subject:

E=admins@coccoc.vn, CN=COC COC COMPANY LIMITED, OU=IT Department, O=COC COC COMPANY LIMITED, L=Hanoi, S=Hanoi, C=VN

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

1121EBA1F222156D26DE5F36CBA2DF3C5A37

File PE Metadata

Compilation timestamp:

9/15/2015 11:55:59 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

Entry address:

0x4E56

Entry point:

BB, 03, B6, 05, 5D, 93, E9, 20, 01, 00, 00, 85, 2B, 8E, 8A, 36, BA, 8E, 8A, D6, 32, 10, 0E, 0E, 8E, 0E, 0E, EF, 0E, 0E, 0E, 6D, 3F, 44, 3F, 3E, 3F, 47, 45, 44, 0E, 0E, 0E, 82, 6F, 88, 73, 70, 6F, 7B, 6F, 3C, 72, 7A, 7A, 0E, 0E, 0E, 0E, 6A, 0E, 0E, 0E, 54, 80, 73, 73, 5A, 77, 70, 80, 6F, 80, 87, 0E, 51, 80, 73, 6F, 82, 73, 52, 77, 80, 73, 71, 82, 7D, 80, 87, 4F, 0E, 0E, 0E, 0E, 55, 73, 82, 65, 77, 7C, 72, 7D, 85, 81, 52, 77, 80, 73, 71, 82, 7D, 80, 87, 4F, 0E, 0E, 0E, 0E, 55, 73, 82, 5B, 7D, 72, 83, 7A, 73... 
[+]

Entropy:

6.8663

Code size:

51.5 KB (52,736 bytes)

Remove CocCocUpdate.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.