home

wzdl.exe

Chencheng Cai

The application wzdl.exe by Chencheng Cai has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Chencheng Cai  (signed and verified)

MD5:
109701ab4ba807d02c694962848fca12

SHA-1:
50ba33a4d1cfbe3a90b33dc03a7e222be6bc946e

SHA-256:
f3f08fe13b85481b852eae050756209a5819afc265c5286af9999ea98716c863

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/30/2024 3:27:50 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.ELEX (M)
17.3.11.17

File size:
308.1 KB (315,512 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\tools\wzp\omigazip_patch\wzdl.exe

Digital Signature
Signed by:
Chencheng Cai

Authority:
thawte, Inc.

Valid from:
6/21/2016 9:00:00 PM

Valid to:
1/17/2017 9:59:59 PM

Subject:
CN=Chencheng Cai, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
1B38E894E8619E9CFFA77F0FC3F17B4D

File PE Metadata
Compilation timestamp:
6/22/2016 11:14:46 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0xE3F9

Entry point:
AA, F4, A1, 93, 82, 83, D8, 1A, 82, F4, D6, 70, 55, 55, A6, E8, 60, B4, E6, 10, AA, F8, 50, 19, F0, 60, 58, 23, A4, 71, A6, 75, 18, 5A, F3, 27, B6, E6, 70, 52, 70, 04, 5A, 73, A4, B6, 86, 46, 08, 93, F5, 16, 41, 7A, 6B, 24, 04, 1B, 58, C7, E0, 78, 25, B2, DE, 3A, 0E, FF, 5A, 83, 83, EC, 78, B9, 2E, 36, AD, 13, 58, 01, 91, F5, 56, AD, 1A, 0A, 69, E8, 88, B2, E6, 44, D5, 92, B4, 5F, 55, EB, 47, 93, 82, 93, 64, 7C, 89, 61, 8D, C1, CE, 3F, 19, 5B, 7F, 0A, 37, 77, 2C, 29, 18, 87, 63, 6D, 3C, 8E, 35, 86, F4, 16...
 
[+]

Code size:
121.5 KB (124,416 bytes)

Remove wzdl.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.