rootgenius_en_2.2.6.exe

RootGenius

深圳瓶子科技有限公司

This is a setup program which is used to install the application. The file has been seen being downloaded from downloader.disk.yandex.com and multiple other hosts.
Publisher:
深圳瓶子科技有限公司  (signed and verified)

Product:
RootGenius

Version:
3.1.7

MD5:
468094fce116b917d41d0a3262a441fb

SHA-1:
a60b3f1df2112d35184a7549aefdf30ea7e865b1

SHA-256:
4b20a34b367d3ca36bf51ea8fcb551c31c2b6b3aa18781442fd39144de6b6634

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 4:38:42 AM UTC  (today)

File size:
7.1 MB (7,453,104 bytes)

Product version:
3.1.7

Copyright:
Copyright 2016

Original file name:
RootGenius.exe

File type:
Executable application (Win32 EXE)

Language:
Chinese (Simplified, PRC)

Common path:
C:\users\{user}\downloads\rootgenius_en_2.2.6.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
3/22/2016 5:00:00 PM

Valid to:
4/22/2017 4:59:59 PM

Subject:
CN=深圳瓶子科技有限公司, O=深圳瓶子科技有限公司, L=深圳市, S=广东省, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
7C0C0DB10EE2755D8F8369F91B5D7F4F

File PE Metadata
Compilation timestamp:
3/31/2016 11:54:25 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
196608:EZ3w6lXae9fOd4X25zwBa6NFiu4iv9kjwiAkeRO:egkaeYdkEsBnAu4iVkjwf9O

Entry address:
0xAA18

Entry point:
E8, 2C, 5F, 00, 00, E9, 7F, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 54, 24, 0C, 8B, 4C, 24, 04, 85, D2, 74, 7F, 0F, B6, 44, 24, 08, 0F, BA, 25, A4, EE, 42, 00, 01, 73, 0D, 8B, 4C, 24, 0C, 57, 8B, 7C, 24, 08, F3, AA, EB, 5D, 8B, 54, 24, 0C, 81, FA, 80, 00, 00, 00, 7C, 0E, 0F, BA, 25, 40, D5, 42, 00, 01, 0F, 82, 3E, 64, 00, 00, 57, 8B, F9, 83, FA, 04, 72, 31, F7, D9, 83, E1, 03, 74, 0C, 2B, D1, 88, 07, 83, C7, 01, 83, E9, 01, 75, F6, 8B, C8, C1, E0, 08, 03, C1, 8B, C8, C1, E0...
 
[+]

Entropy:
7.9776  (probably packed)

Code size:
132.5 KB (135,680 bytes)

The file rootgenius_en_2.2.6.exe has been discovered within the following program.

RootGenius  by shuame
www.shuame.com
About 3% of users remove it
 
Powered by Should I Remove It?

The file rootgenius_en_2.2.6.exe has been seen being distributed by the following 50 URLs.

https://downloader.disk.yandex.com/disk/d2b2f6a0e091d404c956f5f986519f4891a846bf0b60367edc262252caef4e95/581dfd87/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

https://downloader.disk.yandex.com/disk/69b644357b15fc893fa157ae27d02c649058e709f77c3279c826801c24946914/589123fc/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

https://zima271h.storage.yandex.net/rdisk/65c28c489127e6b0819d711367b8746cc73958572acf3135c2aee704a36f3cb5/57e60133/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2&rtoken=9ueQeX9giLXN&force_default=no&ycrid=na-a856218d14d90404628ca5408ccb1996-downloader11h

https://downloader.disk.yandex.com/disk/f7640d238f557576cdd0fc9ed26cb43c8048126ebd61f7074730e714f791d4e4/578ae91c/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

blob:76924762-A321-4E25-A7D7-360774101FFC

https://downloader.disk.yandex.com/disk/a53c0d6072345fa51e90da3c04e2e85fade17d3c49c2f604796186b99aa9064c/58a91e08/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

https://downloader.disk.yandex.com/disk/2ca72ca6db5f858bc1e1a2ecd9bfa0ea8060f885d70d9a5312e71edfe3dea063/5862a7a5/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

http://www.apkmoder.com/redirect/https://archive.org/download/.../RootGenius_en_2.2.6.exe

https://mega.nz/persistent/.../f0Vjxbyb

https://softpedia-secure-download.com/dl/3003328b0e90d3edc9fb6e8409ad4ad9/586a1520/100248037/software/.../RootGenius_en_3.1.7.exe

http://www.afterdawn.com/software/.../download.cfm?version_id=102425&software_id=8724&mirror_id=0&installer=0&perion=0&air_installer=0

https://dc727.4shared.com/download/.../RootGenius_en.exe

https://docs.google.com/uc?authuser=0&id=0B8n1DHCVvUSsRkUxODNTVUpOTHc&export=download

http://files1.majorgeeks.com/1b12d60e85a7a2d7c03b9daad3d1959f/.../RootGenius_en_2.2.6.exe

https://downloader.disk.yandex.com/disk/71243bb12b94e2a8d7b2db4fdd7cd747a6ee82f717d63286677600b9e1678ee9/5817bc6b/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

https://openload.co/.../ykRuE7dWNK0~1473194117~177.99.0.0~m0M2SWM9

temp:RootGenius_en_2.2.6.exe

https://downloader.disk.yandex.com/disk/bb0aae4adc58b08595cec35684169a1bd553745d53f1b37b42fc127f8f90d962/570ca6cd/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

https://downloader.disk.yandex.com/disk/1dcac4a0a7b65d3df58cef990d88a3b688df2406d93f062049db40f8b7f10274/58489057/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

https://downloader.disk.yandex.com/disk/d8e433cd6080c531ce82edc0ac16cc8bbc65d89d27118c6132c23e5a06dec380/57e21041/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

http://www.majorgeeks.com/index.php?ct=files&action=download&PHPSESSID=msop196ri5pv9e5kvhh23og907

http://fs1.d-h.st/download/00125/.../RootGenius_en.exe

https://mega.co.nz/temporary/.../Lt01XYxS

https://docs.google.com/uc?authuser=0&id=0B1yJMOZJOOCYTmwyQndKSHoxQXc&export=download

http://download.softpedia.com/dl/7d9e2d7b50ace3e3c187617d0211882d/5807c8f8/100248037/software/.../RootGenius_en_3.1.7.exe

https://mega.nz/temporary/.../UUJHxIjT

https://downloader.disk.yandex.com/disk/6349709d0646db00191f4079ea31217987525ab4327877ec313659ec6e7c96eb/57792923/ZlL9smQLURLispDUL56TcEOXfciksKoGwL2Ass7n8dRcBZTxrXB9uM96bX_g-gBNwCXFPkZ7wv7y2tsTO12WGg==?uid=0&filename=RootGenius_en.exe&disposition=attachment&hash=77vVubqwkaxNuK/.../x-msdownload&fsize=4954744&hid=1e6f7f238400921551bbdb970ad3a13a&media_type=executable&tknv=v2

https://mega.nz/temporary/.../5oVgQSAa

http://dc746.4shared.com/download/.../RootGenius_en.exe

https://mega.nz/temporary/.../7x1kBBiI

Latest 30 of 93 download URLs

Scan rootgenius_en_2.2.6.exe - Powered by Reason Core Security