APB_GamersFirst_LIVE!_Setup_EN.exe

GamersFirst LIVE!

Reloaded Games, Inc

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This file is installed with multiple programs including APB Reloaded. The file has been seen being downloaded from setup.gamersfirst.com.
Publisher:
GamersFirst  (signed by Reloaded Games, Inc)

Product:
GamersFirst LIVE!

Description:
GamersFirst LIVE! Installer

Version:
1.0.0.31680

MD5:
0947db567f039fac11e1f6018699ad56

SHA-1:
4689753636301b76eb120812ec76af3ea1ddcfe6

SHA-256:
288dda3315bbdc82997aac6bc676766517a4b980465b2c7b3074f4aa708f7574

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/25/2024 11:32:28 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Trend Micro House Call
HV_ZYX_CA232EE2.TOMC
7.2.108

File size:
12.3 MB (12,849,880 bytes)

Copyright:
Copyright (C) 2010

Original file name:
APB_GamersFirst_LIVE!_Setup_31680_EN.exe

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\apb_gamersfirst_live!_setup_en.exe

Digital Signature
Authority:
DigiCert Inc

Valid from:
4/3/2013 3:00:00 AM

Valid to:
1/28/2015 2:00:00 PM

Subject:
CN="Reloaded Games, Inc", O="Reloaded Games, Inc", L=Irvine, S=California, C=US, PostalCode=92618, STREET=6440 Oak Canyon, STREET=Suite 200, SERIALNUMBER=C3427122, OID.1.3.6.1.4.1.311.60.2.1.2=California, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0F690E51A142E34D2C922D045F3537FC

File PE Metadata
Compilation timestamp:
4/10/2010 3:19:31 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:jcDPjZZDbRMAdzSPlSvRftx6WaTthiEahtuY5Z4Yt:j8pRMeSPlSp6WStIEa/Zr

Entry address:
0x354B

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, D8, 84, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B8, 80, 40, 00, 55, FF, 15, B0, 82, 40, 00, 6A, 08, A3, 98, 06, 47, 00, E8, 67, 27, 00, 00, 55, 68, B4, 02, 00, 00, A3, B0, 05, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 1C, 86, 40, 00, FF, 15, 80, 81, 40, 00, 68, 04, 86, 40, 00, 68, A0, 85, 46, 00, E8, 35, 26, 00, 00, FF, 15, B4, 80, 40, 00, 50, BF, A0, 10, 4C, 00, 57, E8, 23, 26, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
25 KB (25,600 bytes)

The file APB_GamersFirst_LIVE!_Setup_EN.exe has been discovered within the following programs.

APB Reloaded  by Gamersfirst
APB Reloaded is a Free2Play video game distributed on the GamersFirst.com (G1) platform from Reloaded Games. Running the the game's setup will also install the copmpany's GamersFirtsLive! program (a portal to download and manage installed GamersFirst games.
www.gamersfirst.com/apb
About 3% of users remove it
TeamSpeak 3 Client  by TeamSpeak Systems GmbH
Publisher's description - “TeamSpeak 3 continues the legacy of the original TeamSpeak communication system previously offered in TeamSpeak Classic (1.5) and TeamSpeak 2.”
www.teamspeak.com
4% remove it
 
Powered by Should I Remove It?

The file APB_GamersFirst_LIVE!_Setup_EN.exe has been seen being distributed by the following URL.

Scan APB_GamersFirst_LIVE!_Setup_EN.exe - Powered by Reason Core Security