itunesdriver.exe

Apple Driver Support

北京悠然天地科技有限公司

This is a setup program which is used to install the application. The file has been seen being downloaded from download1723.mediafire.com and multiple other hosts.
Publisher:
悠然天地科技有限公司  (signed by 北京悠然天地科技有限公司)

Product:
Apple Driver Support

Version:
1.2.2.1

MD5:
31793bfe98d2a059576098780220440e

SHA-1:
910f88d8773e9ff695de9ba15790e5b0a2422294

SHA-256:
5906b0820021f1a930424689974da0241cb630cac22bcefc8051c6e3dda9ed8b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 3:02:46 AM UTC  (today)

File size:
49.8 MB (52,266,712 bytes)

Product version:
1.2.2.1

Copyright:
版权所有(C)2014

Original file name:
suf_launch.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\kuaiyong\datacache\appledriver\itunesdriver.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
1/6/2015 2:24:34 PM

Valid to:
1/7/2016 2:24:34 PM

Subject:
CN=北京悠然天地科技有限公司, O=北京悠然天地科技有限公司, L=北京, S=北京, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121995FF374E7AC48800B98E7E07A4A03C7

File PE Metadata
Compilation timestamp:
6/14/2012 8:16:12 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
786432:+GDKB8wOLT3K86mI5I42D2nCWLlzY2kO5fUIf6D+FMlJeE:nuBEy86R5D2inzRzYrO5/CD+FMzeE

Entry address:
0x2D1C

Entry point:
48, 83, EC, 28, E8, FB, 1F, 00, 00, 48, 83, C4, 28, E9, 52, FE, FF, FF, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 48, 89, 7C, 24, 18, 41, 54, 48, 83, EC, 20, 4C, 8D, 25, 24, 93, 00, 00, 33, F6, 33, DB, 49, 8B, FC, 83, 7F, 08, 01, 75, 26, 48, 63, C6, BA, A0, 0F, 00, 00, FF, C6, 48, 8D, 0C, 80, 48, 8D, 05, 32, A2, 00, 00, 48, 8D, 0C, C8, 48, 89, 0F, FF, 15, FD, 53, 00, 00, 85, C0, 74, 26, FF, C3, 48, 83, C7, 10, 83, FB, 24, 7C, C9, B8, 01, 00, 00, 00, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 8B, 7C...
 
[+]

Entropy:
7.9446  (probably packed)

Code size:
24.5 KB (25,088 bytes)

The file itunesdriver.exe has been seen being distributed by the following 50 URLs.

http://download1723.mediafire.com/59xbam174bmg/.../iTunesDriver64_0205.exe

https://docs.google.com/uc?export=download&confirm=hKdB&id=0B_U3f5bqdf7gLXJmek1MUGgzekU

http://download016.fshare.vn/dl/.../iTunesDriver64_0205.exe

http://d.pcs.baidu.com/.../31793bfe98d2a059576098780220440e?fid=2684494973-250528-347501555793590&time=1452715040&rt=sh&sign=FDTAERVY-DCb740ccc5511e5e8fedcff06b081203-nfZ GbAdxJQ6Nwb5IPfnfy5Digo=&expires=8h&chkv=1&chkbd=0&chkpc=et&dp-logid=305329327108854433&dp-callid=0&r=384194893

https://docs.google.com/uc?export=download&confirm=uCPg&id=0B_U3f5bqdf7gLXJmek1MUGgzekU

https://docs.google.com/uc?export=download&confirm=XPDK&id=0B_U3f5bqdf7gLXJmek1MUGgzekU

http://download1406.mediafire.com/mz7eb0i5vrng/.../iTunesDriver64_0205.exe

http://dc359.4shared.com/download/.../iTunesDriver64_0205.exe

https://docs.google.com/uc?export=download&confirm=I54w&id=0B_U3f5bqdf7gLXJmek1MUGgzekU

https://mega.nz/temporary/.../lUoCRSyB

http://d.pcs.baidu.com/file/31793bfe98d2a059576098780220440e?fid=2684494973-250528-347501555793590&time=1437691862&expires=1437692883&rt=sh&chkv=1&chkpc=et&sign=FDTERVYA-DCb740ccc5511e5e8fedcff06b081203-PxCCbUjK3hQ5Vkcyn VJEAb2KcY=&r=895469723&sharesign=KT2E iNsE9l8whp9Opk SDiWrVJ7cTUZqqKx4z8o0sAj7Zbj PLqpXjKDYVxnWwk6fESss/xkEaUjeaycDqs0Xs78mLH aRTHCKakkQZfCCcGxv7emRRnOkd1o7oQWujCEGFdQD3MJYhZnuy4lhOsF9mEDbJzrVPScFbPQcXM3pxYv UI/BqGBBITwMf2rKi8T8/UArVtBY3R8EZEh0RAiZUN6 8p NEvqEs6NAwl6IRpJAyN81lXpzZYqsEoqjJH2/.../M5CdppSBHkjZ2vPbanzDuVSFE ZFbYmN48M8K79kCfRPYCZJLkz6q4UyXME IoC3loY=&sh=1

https://docs.google.com/uc?export=download&confirm=wrNa&id=0B_U3f5bqdf7gLXJmek1MUGgzekU

http://download016.fshare.vn/dl/.../iTunesDriver64_0205.exe

http://download1406.mediafire.com/egvdz0s59ibg/.../iTunesDriver64_0205.exe

http://d.pcs.baidu.com/file/31793bfe98d2a059576098780220440e?fid=2684494973-250528-347501555793590&time=1443477232&expires=1443478253&rt=sh&chkv=1&chkpc=et&sign=FDTERVYA-DCb740ccc5511e5e8fedcff06b081203-WJzcr/LsrSJwPIU8YQFWwSYjTOI=&r=423014455&sharesign=KT2E iNsE9l8whp9Opk SPi5tB9uAjqc1Ckaf1289Mo4oS2USHu3w1QQG V14OWKtLU6vNVZ3LisyXQcYr0N7tQh1Nxvagclfog/V15NSWjVfxaDiWpm74SZ qZk4xIXfkLOR2WzFOONf59SPn3ie5xwajpXstpaIQDH9QyQQe7CFXYj5tMB5qwznJLkecOHGth7Ofz7fywqyhHIuCXWkpAPLL5VjOpzjLkwhKSIEMeNKG1LcHDFo6ADCtMDBFF9sB ZT3sPC onoMDViGm9vScIaLBsx83zK3Vk6/jOrOQbnetLHh4RQO8g6o/KwYjJtfUkUkxWpTDG0ab101kz bfeT/.../iGYs3h1z490pxo=&sh=1

https://docs.google.com/uc?export=download&confirm=L7Tg&id=0B_U3f5bqdf7gLXJmek1MUGgzekU

http://d.pcs.baidu.com/file/31793bfe98d2a059576098780220440e?fid=2684494973-250528-347501555793590&time=1437439134&expires=1437440155&rt=sh&chkv=1&chkpc=et&sign=FDTERVYA-DCb740ccc5511e5e8fedcff06b081203-0oh8E/cqoOGLLxn56dDuDWHkUg4=&r=352452517&sharesign=KT2E iNsE9l8whp9Opk SDowAWDcozJMfRtf0vu wiFydFPpCHYWI1QQG V14OWKtLU6vNVZ3LisyXQcYr0N7tQh1Nxvagcl9k3472yuLp3VfxaDiWpm74SZ qZk4xIXfkLOR2WzFOONf59SPn3ie5xwajpXstpaIQDH9QyQQe4ht15MZ4IOj8usm0kZzs1e7PAw9qGbTpayuD/DCMLHpPGKxiH5264UX2EGYjbj9dx7kcbRarYekneq8KM9lWyFx7Pzi9tJfXpyOi6/oilgK7jezV1lYx9vzYcZ4cDXsMUcBzpjDU6iD2/.../KkbVbwxAVaQkLB1Ll37lukbdNzPg6uziHQ=&sh=1

http://203.130.62.15/ws.cdn.baidupcs.com/file/.../ieOpjufZEuYUV 1LXI=&to=lc&fm=Nin,B,M,ny&sta_dx=50&sta_cs=1215&sta_ft=exe&sta_ct=6&fm2=Ningbo,B,M,ny&newver=1&newfm=1&secfm=1&flow_ver=3&pkey=140031793bfe98d2a059576098780220440edf866dd50000031d86d8&expires=8h&rt=sh&r=371083844&mlogid=7009491536538252867&vuk=-&vbdid=510393910&fin=iTunesDriver64_0205.exe&fn=iTunesDriver64_0205.exe&slt=pm&uta=0&rtype=1&iv=0&isw=0&dp-logid=7009491536538252867&dp-callid=0.1.1&wshc_tag=0&wsts_tag=56328f0e&wsid_tag=5661b80f&wsiphost=ipdbm

Latest 30 of 54 download URLs

Scan itunesdriver.exe - Powered by Reason Core Security