za_connect.exe

Zoho Assist

ZOHO Corporation

Publisher:
ZOHO Corporation  (signed and verified)

Product:
Zoho Assist

Version:
1.0.0.1

MD5:
1dfa160d801a820730b9e721203e314b

SHA-1:
0ecc54701c2b4d58a4995688293d9d11a1eb3af5

SHA-256:
8b06dc4a18936a743df3ef04655f0b5bf90ab5e66687fe7acd2fae49a63716ff

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/8/2024 8:32:24 AM UTC  (today)

File size:
476.6 KB (488,056 bytes)

Product version:
1.0.0.1

Copyright:
<Zoho meeting>. All rights reserved.

Original file name:
Connect.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\za_connect.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
6/17/2016 2:00:00 AM

Valid to:
12/21/2017 12:59:59 AM

Subject:
CN=ZOHO Corporation, OU=ZOHO, O=ZOHO Corporation, STREET="Estancia IT Park , Vallanchery , Guduvancheri, GST Road", L=Chennai, S=Tamilnadu, PostalCode=603202, C=IN

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00CC6247406C2E79376B4DCD8C406F715D

File PE Metadata
Compilation timestamp:
2/28/2017 7:02:29 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

Entry address:
0x2DEC1

Entry point:
E8, EA, 81, 00, 00, E9, 17, FE, FF, FF, 3B, 0D, B0, 09, 47, 00, 75, 02, F3, C3, E9, 6A, 82, 00, 00, 51, C7, 01, 74, 5D, 45, 00, E8, 62, 83, 00, 00, 59, C3, 56, 8B, F1, E8, EA, FF, FF, FF, F6, 44, 24, 08, 01, 74, 07, 56, E8, 0A, 56, FE, FF, 59, 8B, C6, 5E, C2, 04, 00, 8B, 44, 24, 04, 83, C1, 09, 51, 83, C0, 09, 50, E8, 1B, 2C, 00, 00, F7, D8, 59, 1B, C0, 59, 40, C2, 04, 00, 6A, 0C, 68, 98, 99, 46, 00, E8, F5, 61, 00, 00, 33, F6, 89, 75, E4, 33, C0, 8B, 5D, 08, 3B, DE, 0F, 95, C0, 3B, C6, 75, 1C, E8, E9, 15...
 
[+]

Entropy:
6.3247

Code size:
323.5 KB (331,264 bytes)

The file za_connect.exe has been seen being distributed by the following URL.

https://assist.zoho.com/join-session?key=418415544&role=A&src=manualDwnld&_tracker=null&email=laurent_ge@hotmail.com

Scan za_connect.exe - Powered by Reason Core Security