bloodyroar2_tinhoc2.net.exe

Hudson Soft

This is a setup and installation application. The file has been seen being downloaded from api2.tenlua.vn and multiple other hosts.
Publisher:
Hudson Soft

Description:
Bloody Roar 2 Installation

Version:
2

MD5:
c5581df2196041acd57660ead54cf7c8

SHA-1:
2bbe533e815b13cf9b2dbefe4ff52fabb0a52588

SHA-256:
a3d9ba8cc5f325f7416c246d026f601421a982862378263bee3c7cc1334956c1

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/30/2024 3:34:41 PM UTC  (today)

Scan engine
Detection
Engine version

ViRobot
Backdoor.Win32.A.Hupigon.22978596
2011.4.7.4223

File size:
21.9 MB (22,978,596 bytes)

Copyright:
Hudson Soft

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\bloodyroar2_tinhoc2.net.exe

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:/w2wApcjl24PMAlG1O7ofte3VWCKcNs24ciEXkNsQKw8gF0Uu2M4fqhRTkRPcW:3SlFMrfte3VhyVckwr80iz4kGW

Entry address:
0x17D64

Entry point:
55, 8B, EC, 83, C4, F0, B8, 9C, 7C, 41, 00, E8, 6C, AB, FE, FF, B8, C4, 7D, 41, 00, E8, 6A, 18, FF, FF, 8B, 15, AC, 86, 41, 00, 89, 02, 8B, 15, AC, 86, 41, 00, 8B, 12, A1, B0, 86, 41, 00, E8, 80, D5, FF, FF, 8B, 15, AC, 86, 41, 00, 8B, 12, A1, 50, 86, 41, 00, E8, 82, 71, FF, FF, A1, AC, 86, 41, 00, E8, 64, 0A, FF, FF, E8, 87, 9B, FE, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
91.5 KB (93,696 bytes)

The file bloodyroar2_tinhoc2.net.exe has been seen being distributed by the following 18 URLs.

http://api2.tenlua.vn/filemanager/builddownload/.../?hash=0c2cbb29bc5e35044b68702869fb2c8c2e25ad82a014aa50ff2a9561cd174617622079f8e76d2fb11522f9fa0d2e0c53443212dfbaf54e65765cc34ef480dc9fc49ffc87d04891fff7253007f9108261c709812aaa591a60801a30ca1f7f2bfff4368e29142474a8f2d8ed78594f892f9540bb061813327a4c6172dddda9ae3f829703233a61c5957d33d92f84d123a1f81657d8b6409a98c09008ecd7&url=0b3da36fa30172185e33336174fd75853636b390ad53eb4da0&down=0b3da36fa30172185e33336174fd75853636b390ad53fc55a0&jump_type=download&file=diendanbaclieu.netdau-truong-thu-bloodyroar2.exe

http://download2100.mediafire.com/npv5gbwjplag/.../BloodyRoar2.exe

https://s13.tenlua.vn/dl/.../diendanbaclieu.netdau-truong-thu-bloodyroar2.exe

http://api2.tenlua.vn/filemanager/builddownload/.../?hash=503da62ee65769505d3b752c6cf3729d2567ff8cf41ff10ceb2acb7fce474d47622079f8e76d2fb11522f9fa0d2e0c53443212dfbaf54e65765cc34ef480dc9fc49ffc87d04891fff7253007f9108261c709812aaa591a60801a30ca1f7f2bfff4368e29142474a8f2d8ed78594f892f9540bb061813327a4c6172dddda9ae3f829703233a61c5957d33d92f84d123a1f81657d8b6409a98c09008ecd7&url=0b3da36fa30172185e33336174fd75853636b390ad53eb4da0&down=0b3da36fa30172185e33336174fd75853636b390ad53fc55a0&jump_type=download&file=diendanbaclieu.netdau-truong-thu-bloodyroar2.exe

http://download1001.mediafire.com/z062r71oe8ng/.../TopGameHot.Com--Dau-truong-thu2-BloodyRoar2.exe

http://api2.tenlua.vn/filemanager/builddownload/.../?hash=0b3db86ca40e39024830712b70a828842839f387a016ee4bee359e69ce4a4810622079f8e76d2fb11522f9fa0d2e0c53443212dfbaf54e65765cc34ef480dc9fc49ffc87d04891fff7253007f9108261c709812aaa591a60801a30ca1f7f2bfff4368e29142474a8f2d8ed78594f892f9540bb061813327a4c6172dddda9ae3f829703233a61c5957d33d92f84d123a1f81657d8b6409a98c09008ecd7&url=0b3da36fa30172185e33336174fd75853636b390ad53eb4da0&down=0b3da36fa30172185e33336174fd75853636b390ad53fc55a0&jump_type=download&file=diendanbaclieu.netdau-truong-thu-bloodyroar2.exe

http://file.dl1.svit.vn/download/6b6b1154/8f30ddd4416dc56048a09ff9c49ff43d/2013/.../SinhVienIT.Net--Dau-truong-thu-BloodyRoar2.exe

http://file.dl1.svit.vn/download/6b6b1154/affc6a5dce2e6f51e44fa2e09dfa89e8/2013/.../SinhVienIT.Net--Dau-truong-thu-BloodyRoar2.exe

http://api2.tenlua.vn/filemanager/builddownload/.../?hash=5671a576e202365c1471712474a07cdd2b3faadef54bfd4be769c56ecd441447622079f8e76d2fb11522f9fa0d2e0c53443212dfbaf54e65765cc34ef480dc9fc49ffc87d04891fff7253007f9108261c709812aaa591a60801a30ca1f7f2bfff4368e29142474a8f2d8ed78594f892f9540bb061813327a4c6172dddda9ae3f829703233a61c5957d33d92f84d123a1f81657d8b6409a98c09008ecd7&url=0b3da36fa30172185e33336174fd75853636b390ad53eb4da0&down=0b3da36fa30172185e33336174fd75853636b390ad53fc55a0&jump_type=download&file=diendanbaclieu.netdau-truong-thu-bloodyroar2.exe

http://api2.tenlua.vn/filemanager/builddownload/.../?hash=122bee77e54e2b5e4761622a70ac69de7361fcd0f51eae52b96cc469ce124b0a622079f8e76d2fb11522f9fa0d2e0c53443212dfbaf54e65765cc34ef480dc9fc49ffc87d04891fff7253007f9108261c709812aaa591a60801a30ca1f7f2bfff4368e29142474a8f2d8ed78594f892f9540bb061813327a4c6172dddda9ae3f829703233a61c5957d33d92f84d123a1f81657d8b6409a98c09008ecd7&url=0b3da36fa30172185e33336174fd75853636b390ad53eb4da0&down=0b3da36fa30172185e33336174fd75853636b390ad53fc55a0&jump_type=download&file=diendanbaclieu.netdau-truong-thu-bloodyroar2.exe

Scan bloodyroar2_tinhoc2.net.exe - Powered by Reason Core Security