home

burnoutparadise1001.exe

Visual Patch Runtime

Electronic Arts

This is a setup program which is used to install the application. This file is installed with the program Burnout(TM) Paradise The Ultimate Box. The file has been seen being downloaded from largedownloads.ea.com and multiple other hosts.
Publisher:
Electronic Arts  (signed and verified)

Product:
Visual Patch Runtime

Description:
Patch Application

Version:
3.0.1.0

MD5:
56b142bce2a913d664256fcad60ea5d8

SHA-1:
fb060fd76e7fe0a2aa51db81b2d5e5fb3774c26e

SHA-256:
510131a59655b4180055c5876441166c4513464727847ec9a499953f647f1e47

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/27/2024 5:48:32 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Heur.Suspicious
17891

Norman
Suspicious_Gen2.VON
11.20140307

ViRobot
Trojan.Win32.Pasta.564528
2011.4.7.4223

File size:
21.3 MB (22,332,104 bytes)

Product version:
3.0.1.0

Copyright:
Patch Engine Copyright © 2005-2007 Indigo Rose Corporation

Trademarks:
Visual Patch is a trademark of Indigo Rose Corporation.

Original file name:
vpatch.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise1001.exe

Digital Signature
Signed by:
Electronic Arts

Authority:
VeriSign, Inc.

Valid from:
9/5/2008 2:00:00 AM

Valid to:
10/5/2011 1:59:59 AM

Subject:
CN=Electronic Arts, OU=Synthetic, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Electronic Arts, L=Redwood City, S=Ca, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6E9B46A4FDC17828C3E7EA71C2BE85FB

File PE Metadata
Compilation timestamp:
9/4/2007 10:07:08 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
393216:cRD9t9B77ugvOvNkWWFpoW3y+CMxYmcfk8p9AU5rRmlNCyNy4GU257amSD:ct77OvNkBty+lgX8LVGUsv

Entry address:
0x1E44

Entry point:
55, 8B, EC, 6A, FF, 68, 80, 61, 40, 00, 68, 74, 31, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 80, 60, 40, 00, 33, D2, 8A, D4, 89, 15, 8C, 9C, 40, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 88, 9C, 40, 00, C1, E1, 08, 03, CA, 89, 0D, 84, 9C, 40, 00, C1, E8, 10, A3, 80, 9C, 40, 00, 6A, 01, E8, 07, 03, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C3, 00, 00, 00, 59, E8, 77, 1B, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B2, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Entropy:
7.9994

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
20 KB (20,480 bytes)

The file burnoutparadise1001.exe has been discovered within the following programs.

Burnout(TM) Paradise The Ultimate Box  by Electronic Arts
Burnout Paradise is the seventh game in the Burnout racing video game series. It was developed by Criterion Games and published by Electronic Arts. Paradise's gameplay is set in the fictional "Paradise City", an open world in which players can compete in several types of races.
www.ea.com
4% remove it
 
Powered by Should I Remove It?

The file burnoutparadise1001.exe has been seen being distributed by the following 4 URLs.

http://largedownloads.ea.com/pub/patches/Burnout/.../BurnoutParadise1001.exe

http://s10545.chomikuj.pl/File.aspx?e=0uF6c_axIjqru5_mtsGj9hC5selI_lbojGz0uoE7ABw2afWEP04bXsokcKruIMZeAN7C5S1AOQNgkvlJabht6D6uKIdqRd4FWE1CA5PPzOTK26G9H2rz4iHTR2Oxm8echWUimG09hjWFrsXs7CdCOw&pv=2

http://files.downloadnow.com/s/software/11/00/32/.../BurnoutParadise1001.exe

http://s10545.chomikuj.pl/File.aspx?e=0uF6c_axIjqru5_mtsGj9nn1lYrmD__0wnwgV6LNgP8M-RpmjY-a50Kw-gi3A6lbtQu-vhNjHhzNj_1m5oq6QnF157iO1D3uUnG4QlXSdlSBXB-uhE8xyu63vee6-2Jy8JU3bK0lyOzZioCSbFMcsQ&pv=2

Scan burnoutparadise1001.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.