» taigjbreak_v245_5266.exe
Overview
Analysis
File Details
Downloads (3)

taigjbreak_v245_5266.exe

北京悠然天地科技有限公司

This is a setup program which is used to install the application. The file has been seen being downloaded from mega.nz and multiple other hosts.

File name:

Publisher:

太极越狱工具 (signed by 北京悠然天地科技有限公司)

Product:

太极越狱工具

Description:

太极越狱工具(5266)

Version:

2.4.5.0

MD5:

a1a13874fe778de89d7ac442d6b7d568

SHA-1:

c166a86b00b1d6290627501512617dbd14864b82

SHA-256:

9917044d2ea95d42897881b7e7abe2a30bb014eb6db8029e280383e4adfb7568

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/24/2024 2:01:00 AM UTC (today)

File size:

67.6 MB (70,878,728 bytes)

Product version:

2.4.5.0

Original file name:

太极越狱工具

File type:

Executable application (Win32 EXE)

Language:

Chinese (Simplified, China)

Common path:

C:\users\{user}\downloads\taigjbreak_v245_5266.exe

Digital Signature

Signed by:

北京悠然天地科技有限公司

Authority:

GlobalSign nv-sa

Valid from:

1/6/2015 2:24:34 AM

Valid to:

1/7/2016 2:24:34 AM

Subject:

CN=北京悠然天地科技有限公司, O=北京悠然天地科技有限公司, L=北京, S=北京, C=CN

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

1121995FF374E7AC48800B98E7E07A4A03C7

File PE Metadata

Compilation timestamp:

12/24/2015 6:48:09 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

1572864:pOQJZa3aSM/J8k31aFXaAJTzwcHhaZecxtNNNhwohGrilPFN:gQz/uc1GfBaQotNZwohWilPT

Entry address:

0x8702034

Entry point:

EB, 08, AE, 5C, 0E, 00, 00, 00, 00, 00, E9, A5, EB, DB, FB, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.9993 (probably packed)

Code size:

67.2 MB (70,476,288 bytes)

The file taigjbreak_v245_5266.exe has been seen being distributed by the following 3 URLs.

https://mega.nz/temporary/.../7UQywJST

https://docs.google.com/uc?export=download&confirm=bJLC&id=0BxHw_f6tKNbobE1sbmxuRUxfR2s

http://res.taig.com/.../TaiGJBreak_v245_5266.exe

Scan taigjbreak_v245_5266.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.