home

SwingupProduct.exe

Swing Browser Updater

ZUMInternet Corp.

Publisher:
ZUM internet Corp.  (signed by ZUMInternet Corp.)

Product:
Swing Browser Updater

Description:
Swing Browser Update Program

Version:
16.4.21.0

MD5:
e98a2f52c2330e77da0dd38eb1e0d564

SHA-1:
3917bdb8a05f50b1cf218c09649a51cebaff30f7

SHA-256:
ec6ea4f35d39a2b4d382b4f2928fb919cd38f65ddb23395433995243b855bfdc

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 3:51:50 PM UTC  (today)

File size:
1020.1 KB (1,044,616 bytes)

Product version:
16.4.21.0

Copyright:
Copyright (c) 2013 ZUM internet Corp. All Rights Reserved.

Original file name:
SwingupProduct.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\swingupproduct.exe

Digital Signature
Signed by:
ZUMInternet Corp.

Authority:
VeriSign, Inc.

Valid from:
10/31/2014 9:00:00 AM

Valid to:
12/30/2017 8:59:59 AM

Subject:
CN=ZUMInternet Corp., O=ZUMInternet Corp., L=Seocho-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
04A5BE8D013744BE6B24F42E317C37CB

File PE Metadata
Compilation timestamp:
4/21/2016 6:27:28 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:2wys0lcWLSffWWQQr1OmQjUzOMsrKmblcTrhZDX0KKYWi/3i1xa:Fys0KqS4Qr1/QjU6Ms202PDX0DYWi/3N

Entry address:
0x530E7

Entry point:
E8, 4C, DD, 00, 00, E9, 78, FE, FF, FF, 33, C0, 38, 05, 20, D7, 4C, 00, 75, 1B, 50, 6A, 01, 50, 50, 50, C6, 05, 20, D7, 4C, 00, 01, E8, 7E, 83, FD, FF, 50, E8, BB, DD, 00, 00, 83, C4, 18, C3, 6A, 01, 33, C0, 6A, 01, 50, 50, 50, E8, 66, 83, FD, FF, 83, C4, 14, C3, 75, 01, C3, 55, 8B, EC, 83, EC, 00, 50, 52, 53, 56, 57, 6A, 00, FF, 75, 04, E8, 60, E0, 00, 00, 59, 59, 5F, 5E, 5B, 5A, 58, 8B, E5, 5D, C3, 8B, FF, 55, 8B, EC, 56, 8B, F1, 85, F6, 74, 21, 85, D2, 74, 1D, 53, 8B, 5D, 08, 85, DB, 74, 14, 57, B0, CC...
 
[+]

Entropy:
6.5854

Code size:
642 KB (657,408 bytes)

The file SwingupProduct.exe has been seen being distributed by the following 2 URLs.

http://113.171.224.168/.../swingupproduct.exe

http://cdnmedia-zum.cdn.x-cdn.com/zum/swingbrowser/update/.../swingupproduct.exe

Scan SwingupProduct.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.