pangu_v1.2.1.exe

Lingbao Qinling Electronics Co., Ltd.

This is a setup program which is used to install the application. The file has been seen being downloaded from doc-0c-88-docs.googleusercontent.com and multiple other hosts.
Publisher:
Lingbao Qinling Electronics Co., Ltd.  (signed and verified)

Version:
1, 2, 1, 1

MD5:
bdf1532ed8619a685af37efed2912430

SHA-1:
77e964304aea897ee9226d7f0521638d29ec8bbf

SHA-256:
66ce4f1d296851a4b3cb98337304fe22dd0f8d80c48b21069b3e46b254b5bb5e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 7:33:42 AM UTC  (today)

File size:
34.1 MB (35,796,928 bytes)

Product version:
1, 2, 1, 1

Copyright:
Copyright (C) PanguTeam

Original file name:
Pangu.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\pangu_v1.2.1.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
6/23/2014 3:00:00 AM

Valid to:
6/24/2015 2:59:59 AM

Subject:
CN="Lingbao Qinling Electronics Co., Ltd.", OU=IS, O="Lingbao Qinling Electronics Co., Ltd.", L=Lingbao, S=Henan, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
37EDA0F1C795F86E6AB6E496B415F64B

File PE Metadata
Compilation timestamp:
8/11/2014 11:29:07 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
786432:n99AAXhnMhPPBokTSHH2Sxpeik0h1O+VhzEXQQ5NkP:nLLXhnMhPP9TShRHh1OGhziJG

Entry address:
0x411112

Entry point:
E9, CC, 55, 00, 00, BA, 45, 95, DB, 7E, 30, 83, BA, D8, C6, A0, 68, 84, 96, 3A, E0, 53, BA, DD, 2A, D3, 63, B4, DF, 2C, 98, D8, 21, 28, B4, 75, E6, 25, 14, CC, 96, 61, D6, A5, C1, 95, C0, 3E, ED, 57, 01, 05, D1, D7, 46, 9B, FB, 9B, 5B, 33, 4F, 1C, BF, 04, E9, B0, 9C, C3, 1B, 6D, 99, DF, 74, F5, C3, 7D, 6C, 62, F9, 27, A7, 9B, 89, 23, 15, 0C, 86, 8E, B0, 5C, F8, 16, 82, 3D, 45, CC, 64, 6E, 9E, 0E, 9D, 1D, 2A, 18, 41, E5, CB, C9, CB, 65, 73, DD, FB, 2D, B3, 66, FE, C0, 35, 51, 90, 2C, 9D, E1, 9C, A4, 4B, 2E...
 
[+]

Entropy:
7.9738

Packer / compiler:
Xtreme-Protector v1.05

Code size:
2 MB (2,128,384 bytes)

The file pangu_v1.2.1.exe has been seen being distributed by the following 50 URLs.

https://doc-0c-88-docs.googleusercontent.com/docs/securesc/4ougengshqoh7d4nt3pnh8p0ha072c0b/2eiqqp4atosevdas54i4lmt60m9jvcdt/1486670400000/00219785473975567113/.../0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU?e=download

https://mega.nz/temporary/.../FkpmzSKT

blob:DA0F7D0B-9FEE-4053-BB9A-696CEC7C357C

https://docs.google.com/uc?export=download&confirm=yrg4&id=0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU

http://adf.ly/Z=T=lQoZd4HVRmwLOxi48ivMZuGEwjudcfGVF3uZZu3FUGuUMvjIVmwacvC052jb

http://download2038.mediafire.com/okwyutq902lg/.../Pangu_v1.2.1 por Playchapas4.exe

http://183.91.33.78:9999/dl.pangu.25pp.com/.../Pangu_v1.2.1.exe

https://mega.nz/temporary/.../8JhRiYLb

http://hitfile.net/download/redirect/F85FDF2EBA06F7D58BAAE41EEB540F34/.../Pangu_v1.2.1.exe

http://download2140.mediafire.com/8ey0ikskz1mg/.../Pangu_v1.2.1 por Playchapas4.exe

https://docs.google.com/uc?export=download&confirm=pct4&id=0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU

https://docs.google.com/uc?export=download&confirm=41ab&id=0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU

https://docs.google.com/uc?export=download&confirm=ldVc&id=0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU

https://tinhte.vn/.../aHR0cDovL2RsLnBhbmd1LjI1cHAuY29tL2piL1Bhbmd1X3YxLjIuMS5leGU=

http://turbobit.net/download/redirect/56FE27B2326782267E5523462EBB4674/.../Pangu_v1.2.1.exe

blob:8EDCCD92-E273-45B8-9D41-17E0C59FF065

http://www.tbit.vn/tai-ve/.../download?version=41

https://docs.google.com/uc?export=download&confirm=9rO1&id=0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU

http://turbobit.net/download/redirect/6C9501C5E20F15FED7E4E4B787FCF943/.../Pangu_v1.2.1.exe

http://download1635.mediafire.com/u342iblbwwyg/.../Pangu_v1.2.1.exe

http://download1005.mediafire.com/nu3hp81eghcg/.../Pangu_v1.2.1.exe

https://mega.nz/temporary/.../Y5YAlaSK

https://docs.google.com/uc?export=download&confirm=LvPc&id=0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU

https://mega.nz/temporary/.../3wlUVRYB

http://download2016.mediafire.com/hm71efr30w9g/.../Pangu_v1.2.1.exe

http://download1775.mediafire.com/2f2elzpd00cg/.../Pangu_v1.2.1.exe

https://docs.google.com/uc?export=download&confirm=BMAt&id=0B6aB6dm7XZ6WM0ZxLWFVU2xVVVU

http://183.91.33.90/dl.pangu.25pp.com/.../Pangu_v1.2.1.exe

http://download864.mediafire.com/hpa695ddldlg/.../Pangu_v1.2.1.exe

http://download607.mediafire.com/qy42u52gtnvg/.../Pangu_v1.2.1.exe

Latest 30 of 64 download URLs

Scan pangu_v1.2.1.exe - Powered by Reason Core Security