installhelper.exe

qiusheng xie

The application installhelper.exe by qiusheng xie has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
qiusheng xie  (signed and verified)

MD5:
2a0d74ac0bc0b93c27dbe8867b2a1870

SHA-1:
fe697142c5ae2795dfa9b748d6032bf57fa5584e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 1:15:14 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Qiusheng (L)
17.3.4.7

File size:
732 KB (749,568 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\Local settings\temp\installhelper.exe

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
4/27/2015 7:00:00 AM

Valid to:
4/27/2016 6:59:59 AM

Subject:
CN=qiusheng xie, OU=Individual Developer, O=No Organization Affiliation, L=深圳市, S=广东省, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
3C70F2B2B6E352094A12BA8665D3A9D1

File PE Metadata
Compilation timestamp:
9/3/2008 3:15:47 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0xBF307

Entry point:
83, 3C, 24, FE, 77, FE, 8D, 64, 24, CC, 60, 83, EC, DC, E8, 98, FC, FF, FF, F6, D1, 4B, B1, 93, 66, 4B, 86, ED, 75, FA, 87, D2, 87, D2, FF, 73, 3C, 59, 81, E9, FD, FF, FF, 7F, 73, E7, 8D, 54, AC, CE, 81, D9, E6, 13, 00, 00, 71, DB, F6, D4, 46, 40, 80, D4, 21, 47, FF, B4, 19, E4, 13, 00, 80, 83, C4, 04, 66, 81, 44, 24, FC, B0, BA, 86, E0, 75, BE, 42, 80, FC, C4, 68, 59, 68, 2A, A1, E8, 6C, FC, FF, FF, E9, 66, FF, FF, FF, 2B, 74, 24, 28, 0F, 86, 29, FD, FF, FF, 2B, 44, 24, 30, 8D, 4C, 24, 01, 1B, 51, 2B, F7...
 
[+]

Code size:
577.5 KB (591,360 bytes)

Remove installhelper.exe - Powered by Reason Core Security