Rice Electronics Co.,Ltd

Publisher Information

Rice Electronics Co.,Ltd is a software publisher located in Beijing, China*. There is one additional code signing certificate issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
11/4/2011 7:00:00 AM

Valid to:
11/4/2012 6:59:59 AM

Subject:
CN="Rice Electronics Co.,Ltd", OU=VTN Support, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Rice Electronics Co.,Ltd", L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2afdf409c5b747ef1f1ba5905a0dd798

Scanner detections:
Malware distribution  (87% detected)

Scan engine
Details
Detections

McAfee
Artemis!FD931156E76E, Artemis!4FB4240EADDA, Artemis!DE9D855C48D0, Artemis!E0107B7997F5, Artemis!B585FED8900F, Artemis!7366655D3A75, Artemis!61114DD2A556, Artemis!4884E6AFADCA
93.33%

Dr.Web
Trojan.DownLoader8.23186, Trojan.DownLoader8.25327, Trojan.DownLoader9.14697, Trojan.DownLoader8.37138, Trojan.DownLoader9.10897, Win32.FloodFix.7
93.33%

AhnLab V3 Security
Trojan/Win32.Clicker, Trojan/Win32.Dropper
80.00%

NANO AntiVirus
Trojan.Win32.FlowSpirit.cofomv, Trojan.Win32.Gen5.cymiko, Trojan.Win32.FlowSpirit.cwizqq, Trojan.Win32.XPACK.cykjub, Trojan.Win32.Parite.bdaxcz
66.67%

Qihoo 360 Security
HEUR/Malware.QVM09.Gen, HEUR/Malware.QVM11.Gen, Win32/Trojan.Adware.37e, Win32/Virus.Adware.b27
66.67%

ESET NOD32
Win32/FlowSpirit, Win32/FlowSpirit potentially unsafe, Win32/FlowSpirit (variant), Win32/FlowSpirit.I potentially unsafe (variant)
60.00%

Sophos
Generic PUA OK, Generic PUA AK, Mal/Generic-S, Virus 'W32/Floxif-C', Generic PUA HI (PUA)
40.00%

Emsisoft Anti-Malware
Adware.Generic.341271, Trojan.Generic.8973725, Win32.Floxif, Adware.Generic.443593, Trojan.Generic.11543893
40.00%

Avira AntiVirus
TR/Agent.638976.64, SPR/FlowSpirit.634248, ADWARE/Agent.YXT.2, ADWARE/Agent.639920
33.33%

IKARUS anti.virus
Trojan.Agent, Trojan.SuspectCRC, Trojan.Win32.Agent
33.33%

6 / 68      (Malware)
无限刷空间访问.exe  (4884e6afadca72a77e04ede1a8fb74ea)

1 / 68      (inconclusive)
jingling.exe  (0c19c34cfc9125c6a326ecfae68ca332)

14 / 68    (Malware)
jlguaji.exe  (a16201777acd2f66fa00e47aae478c7f)

28 / 68    (PUP)
jinglinp.exe  (2720051703c646fc8613ffc63799d897)

11 / 68    (Malware)
jingling.exe  (893d05885144cf5699a5cae4d403e74d)

11 / 68    (Malware)
jingling.exe  (ca7fd28cb73b5c052d765c32e657a143)

16 / 68    (Malware)
jlguaji.exe  (2325b042acb59d216a72c9521d4c71d6)

11 / 68    (PUP)
traffic wizard.exe  (61114dd2a55610e9957d6cfe2d17f2fc)

13 / 68    (PUP)
jingling.exe  (d228488d8134ac5b3a53871a7fe6abf2)

24 / 68    (PUP)
hack 2 adf.ly.exe  (7366655d3a75d068061ed2985bfee017)

5 / 68      (Malware)
jingling.exe  (b585fed8900f229d012be7d6460ab9c5)

4 / 68      (inconclusive)
jingling.exe  (e0107b7997f59be8bc7efa36bf5da55d)

8 / 68      (Malware)
jingling.exe  (de9d855c48d0801c2820d6b39ce3fb6a)

10 / 68    (Malware)
jinglingsinemafi.exe  (4fb4240eadda24687cf6ed32f3436f60)

11 / 68    (PUP)
jingling.exe  (fd931156e76e90ebf6860c42306137b7)

Downloads URLs for files signed by Rice Electronics Co.,Ltd.

24 / 68    (PUP)

8 / 68      (Malware)
http://dc581.2shared.com/download/.../jinsoft.exe  (de9d855c48d0801c2820d6b39ce3fb6a)

8 / 68      (Malware)

24 / 68    (PUP)

11 / 68    (PUP)
http://marketmultinivel.com/anuncio.exe  (fd931156e76e90ebf6860c42306137b7)

8 / 68      (Malware)

24 / 68    (PUP)

8 / 68      (Malware)

8 / 68      (Malware)

8 / 68      (Malware)

The following websites host and distribute files published by Rice Electronics Co.,Ltd.

The following certificate is also signed by Rice Electronics Co.,Ltd.

5B0B453A316892B55AC4AFEFBA5B6E7A  (Mar 16, 2012 to Mar 16, 2013)

The following publishers (by Authenticode signature organization name) are related.

30 of 544 publishers

* Note, the details and description above are based on the code signing digital signature issued to Rice Electronics Co.,Ltd by VeriSign, Inc. on November 04, 2011 with the serial number '2afdf409c5b747ef1f1ba5905a0dd798'.