pangu_v1.1.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from dl.pangu.25pp.com.
MD5:
b9a049540924d63296f25e377b48e2be

SHA-1:
ddacec012cb541243cc3f986c9c508052345f3ca

SHA-256:
0454ce01359898c5cb894b85d1139c12df875d6f8140f80bc23ff976db2b4eec

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 9:07:01 PM UTC  (today)

File size:
9.4 MB (9,809,196 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\pangu_v1.1.exe

File PE Metadata
Compilation timestamp:
6/28/2014 1:09:03 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:11ztvL9OY+AoBzfdBj1Z4RdrlXzlL+QTwC6rU0P2U7GMu9sQe:11ztjwLBzfdBBqpFzl6Cq3xasN

Entry address:
0x4400A9

Entry point:
9C, 9C, 60, C7, 44, 24, 24, DD, 27, CF, 95, E8, 7B, 95, 01, 00, 68, B0, 92, F8, 6B, 9C, 8D, 64, 24, 04, E9, 95, 11, 02, 00, 9C, 8D, 64, 24, 0C, 0F, 86, C5, 60, 01, 00, F8, 83, E9, 01, 0F, CE, 66, 0F, BD, F2, BE, 27, F0, AC, 92, 89, 4D, FC, 66, 0F, BD, CA, 4F, 66, C1, FE, 0F, 81, E6, 06, 08, E1, 17, 8B, 4D, F8, 38, EC, 66, 0F, C1, FE, 60, 38, EB, 03, 4D, FC, 66, 0F, C1, FE, 66, C1, E6, 0C, 66, D3, EF, 8D, 3C, ED, C6, E8, 70, 57, D1, E9, 9C, 66, 01, CF, 8B, 3C, 8B, E8, 88, 4B, 00, 00, 65, 34, CA, 2C, E2, 6C...
 
[+]

Entropy:
7.7770  (probably packed)

Code size:
2.1 MB (2,223,104 bytes)

The file pangu_v1.1.exe has been seen being distributed by the following URL.

Scan pangu_v1.1.exe - Powered by Reason Core Security