taigjbreak_v245_5266.exe

北京悠然天地科技有限公司

This is a setup program which is used to install the application. The file has been seen being downloaded from mega.nz and multiple other hosts.
Publisher:
太极越狱工具  (signed by 北京悠然天地科技有限公司)

Product:
太极越狱工具

Description:
太极越狱工具(5266)

Version:
2.4.5.0

MD5:
a1a13874fe778de89d7ac442d6b7d568

SHA-1:
c166a86b00b1d6290627501512617dbd14864b82

SHA-256:
9917044d2ea95d42897881b7e7abe2a30bb014eb6db8029e280383e4adfb7568

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/28/2024 3:43:08 AM UTC  (today)

File size:
67.6 MB (70,878,728 bytes)

Product version:
2.4.5.0

Copyright:
Copyright (C) 2015

Original file name:
太极越狱工具

File type:
Executable application (Win32 EXE)

Language:
Chinese (Simplified, China)

Common path:
C:\users\{user}\downloads\taigjbreak_v245_5266.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
1/6/2015 2:24:34 AM

Valid to:
1/7/2016 2:24:34 AM

Subject:
CN=北京悠然天地科技有限公司, O=北京悠然天地科技有限公司, L=北京, S=北京, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121995FF374E7AC48800B98E7E07A4A03C7

File PE Metadata
Compilation timestamp:
12/24/2015 6:48:09 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
1572864:pOQJZa3aSM/J8k31aFXaAJTzwcHhaZecxtNNNhwohGrilPFN:gQz/uc1GfBaQotNZwohWilPT

Entry address:
0x8702034

Entry point:
EB, 08, AE, 5C, 0E, 00, 00, 00, 00, 00, E9, A5, EB, DB, FB, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9993  (probably packed)

Code size:
67.2 MB (70,476,288 bytes)

The file taigjbreak_v245_5266.exe has been seen being distributed by the following 3 URLs.

https://mega.nz/temporary/.../7UQywJST

https://docs.google.com/uc?export=download&confirm=bJLC&id=0BxHw_f6tKNbobE1sbmxuRUxfR2s

Scan taigjbreak_v245_5266.exe - Powered by Reason Core Security