Please modify your link so that it isn't clickable to avoid possible accidental exposure to a suspect file, example www . dongzheng.com.cn /temp / sunwb.exe, if you can do the same for the first post also. Though DrWeb link checker doesn't find anything.
You should send the sample to avast, though this might be difficult as it is 5536.9KB.
Is this the installation file ?
If so scan the installed programs folders, thorough, with archives enabled, to see if you can find the file that is truly detected. Check the avast! Log Viewer (right click the avast icon), Warning section, this contains information on all avast detections, that may show the full path and not the .
I would have thought that it was a file that is inside the sunwb.exe file since it is a packed executable, it also uses two packing methods which I think is strange. avast has very good abilities with unpacking files with more unpacker support than many AV, so I don't know if that might be why avast can see something.
Send the sample to virus@avast.com zipped and password protected with password in email body and possible false positive in the subject.
Or you can also add the file to the User Files (File, Add) section of the avast chest where it can do no harm and send it from there (select the file, right click, email to Alwil Software). No need to zip and PW protect when the sample is sent from chest. A copy of the file/s will remain in the original location, so any further action you take can remove that.
You can exclude it from scans as I said before this will stop it being detected, but you have to send a sample for them to analyse, Tech and I are just avast users like yourself.