GdpAnalutics.exe

GdpAnalutics

北京行云网科技有限公司

This is a setup program which is used to install the application. The file has been seen being downloaded from update.gdp.soft365.com.
Publisher:
Soft365  (signed by 北京行云网科技有限公司)

Product:
GdpAnalutics

Description:
Analytics

Version:
1.0.4.1921

MD5:
2d24c8355288f3f10271cbd13af4f43e

SHA-1:
dc62899866b403355926b7847bcfbde969da5ba8

SHA-256:
1efd3bd9b16ca64e2b5eafb0daf015dc006eafe0fe7e7e9d761ffd7c709d62f6

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/2/2024 3:20:12 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Tool.DownLoader.53
9.0.1.0241

Trend Micro House Call
ADW_DLOAD
7.2.241

Trend Micro
ADW_DLOAD
10.465.29

File size:
128.6 KB (131,712 bytes)

Product version:
1.0.4.1921

Copyright:
Copyright (C) Soft365 2012

Original file name:
GdpAnalutics.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\gdpanalutics.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
6/14/2012 2:59:34 AM

Valid to:
6/15/2015 2:59:34 AM

Subject:
CN=北京行云网科技有限公司, O=北京行云网科技有限公司, L=北京, S=北京, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112176607E396E95A8CBFF2A68C8E77DA2DF

File PE Metadata
Compilation timestamp:
11/26/2012 6:58:44 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3072:rMHMmOcGJrSOE+rAtPnXSwDA/eh7eK+9sMILBNXwjr:rMH1OcAGv+rAt/XDA/u+9sMILBN8

Entry address:
0x50CA0

Entry point:
60, BE, 00, 30, 43, 00, 8D, BE, 00, E0, FC, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89...
 
[+]

Entropy:
7.8760

Packer / compiler:
UPX 2.90LZMA]

Code size:
120 KB (122,880 bytes)

The file GdpAnalutics.exe has been discovered within the following programs.

Foxit PhantomPDF Standard  by Foxit Corporation
Publisher's description - “Foxit PhantomPDF Standard delivers the right features at the right price to deliver professional looking PDF documents. It is available in English, Dutch, French, German, Italian, Portuguese, Russian, and Spanish.”
www.foxitsoftware.com/PDF_Editor
About 2% of users remove it
Foxit Reader  by Foxit Software Inc.
www.foxitsoftware.com
About 9% of users remove it
 
Powered by Should I Remove It?

The file GdpAnalutics.exe has been seen being distributed by the following URL.

Scan GdpAnalutics.exe - Powered by Reason Core Security