Information about Au_.exe

Au_.exe

File Details

MD5: 25e8bb5ad5f8ee0c1d8b6ee55a12dc13
Size: 1 MB
First Published: 2017-05-21 05:04:38 (6 years ago)
Latest Published: 2020-07-01 05:41:15 (3 years ago)
Status: Undefined (on last analysis)
Analysis Date: 2020-07-01 05:41:15 (3 years ago)

Overview

Signed By: BeiJing Baidu Netcom Science Technology Co., Ltd
Status: Valid

Common Places:

%temp%\baidu\autoupdate
%appdata%\baidu\baidunetdisk
%appdata%\baidu\baiduyunguanjia
%temp%\~nsu.tmp
%profile%\downloads\baidunetdisk_portable\baidunetdisk_portable\baidunetdisk
%sysdrive%\system volume information\_restore{f14a1c2c-a641-43f9-a293-b0cb265a4677}\rp1244
%desktop%\utility\baiduyun 5.5.0 (portable)\baidunetdisk
%sysdrive%\windows.old\users\jojo\appdata\roaming\baidu\baidunetdisk
%sysdrive%\adwcleaner\quarantine\c\users\lmstudio\appdata\roaming\baidu\baiduyunguanjia
%appdata%\baidu\baidunetdisk\새 폴더

File Names:

uninst.exe
Au_.exe
Bu_.exe
Zu_.exe
Uu_.exe
Ku_.exe
Qu_.exe
Pu_.exe
Ru_.exe
Ju_.exe
Yu_.exe
Wu_.exe
Vu_.exe
Hu_.exe
Su_.exe
Iu_.exe
Gu_.exe
Tu_.exe
Cu_.exe
Fu_.exe
Xu_.exe
Mu_.exe
Nu_.exe
Ou_.exe
Eu_.exe
Du_.exe
Lu_.exe
A0428760.exe
uninst.exe.vir

Geography:

37.5%
35.3%
6.5%
6.2%
5.9%
1.9%
1.3%
1.1%
0.8%
0.5%
0.5%
0.5%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 10 55.9%
Windows 7 33.6%
Windows 8.1 8.6%
Windows 8 0.8%
Windows XP 0.3%
Windows Embedded Standard 0.3%
Windows Server 2008 R2 0.3%
Windows Vista 0.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000039e3

PE Sections:

Name Size of data MD5
.text 28672 f569e353af0ed51bf4c216faa9bed4e7
.rdata 11264 91eee43954e068e650f7b73a8b0e6915
.data 512 db9f7acbf1c3ddfe255077b699955dfa
.ndata 0 00000000000000000000000000000000
.rsrc 372736 7725be290d9e588f1b350954e07bd9d4
.reloc 4096 b02db74eeab308d397f60e42175ff43c

More information:

Search on Virustotal
copyright for information about Au_.exe