home

sparkservice.exe

spark

Baidu Online Network Technology (Beijing) Co.,Ltd.

It runs as a windows Service named “Baidu Spark Service”.
Publisher:
Baidu Inc.  (signed by Baidu Online Network Technology (Beijing) Co.,Ltd.)

Product:
spark

Version:
43.23.1007.94

MD5:
5d692c6b72a80b8ba977208ea86bf201

SHA-1:
ebc6712566bbd72d0045f0cd79d7d4036545c380

SHA-256:
bc30001020d46ea27bbb7f47c308a8606c019cc14285f66dfabd229b967c0cfe

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/28/2024 4:15:48 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

File size:
171.2 KB (175,359 bytes)

Product version:
43.23.1007.94

Copyright:
Copyright (C) 2013 Baidu Inc. All Rights Reserved.

Original file name:
sparkservice.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\baidu\baidu browser\sparkservice.exe

Digital Signature
Signed by:
Baidu Online Network Technology (Beijing) Co.,Ltd.

Authority:
VeriSign, Inc.

Valid from:
3/17/2016 6:00:00 AM

Valid to:
3/27/2017 5:59:59 AM

Subject:
CN=" Baidu Online Network Technology (Beijing) Co.,Ltd.", OU=Baidu security, O=" Baidu Online Network Technology (Beijing) Co.,Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3E28595049B0AABBCD7F30836248A51C

File PE Metadata
Compilation timestamp:
5/27/2016 3:32:28 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

Entry address:
0x5D9B

Entry point:
E9, 2A, E4, FF, FF, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, 7D, 08, 00, 74, 2D, FF, 75, 08, 6A, 00, FF, 35, 8C, 5E, 41, 00, FF, 15, 08, F1, 40, 00, 85, C0, 75, 18, 56, E8, 26, 10, 00, 00, 8B, F0, FF, 15, 84, F0, 40, 00, 50, E8, D6, 0F, 00, 00, 59, 89, 06, 5E, 5D, C3, CC, 8B, 54, 24, 0C, 8B, 4C, 24, 04, 85, D2, 74, 69, 33, C0, 8A, 44, 24, 08, 84, C0, 75, 16, 81, FA, 80, 00, 00, 00, 72, 0E, 83, 3D, 64, 72, 41, 00, 00, 74, 05, E9, C7, 49, 00, 00, 57, 8B, F9, 83, FA, 04, 72, 31, F7, D9, 83, E1, 03, 74, 0C...
 
[+]

Entropy:
7.2243

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
56 KB (57,344 bytes)

Service
Display name:
Baidu Spark Service

Service name:
SparkSvc

Type:
Win32OwnProcess, InteractiveProcess


Scan sparkservice.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.