cae_downloader.exe

Nexon

Publisher:
Nexon

Version:
1.0.0.4

MD5:
3a4f6c8ee102b8d771489e3b9a9dee59

SHA-1:
c60652a0a307239d6f577d875d442f61513edeea

SHA-256:
f51e16033900ceab754f96cb86d608fa7a0a363fdb14f20b6986cde1ccb863cd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/26/2024 11:54:08 PM UTC  (a few moments ago)

File size:
512 KB (524,288 bytes)

Product version:
1.0.0.4

Copyright:
Copyright (C) Nexon

File type:
Executable application (Win32 EXE)

Language:
Korean (Korea)

Common path:
C:\users\{user}\downloads\cae_downloader.exe

File PE Metadata
Compilation timestamp:
10/13/2010 2:58:32 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:BwEdQfs2m50q9c7EeTjTExlaP0oa3DZhXpgekSLJ2wZ+r0M0TTT57uuSm0:ByaSq9c7EeTjTExlp3tge1J2UM0TTT1W

Entry address:
0x1E73

Entry point:
E8, 2B, 3A, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 51, 56, 8B, 75, 0C, 56, E8, 50, 08, 00, 00, 89, 45, 0C, 8B, 46, 0C, A8, 82, 59, 75, 17, E8, BF, 0E, 00, 00, C7, 00, 09, 00, 00, 00, 83, 4E, 0C, 20, 83, C8, FF, E9, 2D, 01, 00, 00, A8, 40, 74, 0D, E8, A4, 0E, 00, 00, C7, 00, 22, 00, 00, 00, EB, E3, 53, 33, DB, A8, 01, 74, 16, A8, 10, 89, 5E, 04, 0F, 84, 85, 00, 00, 00, 8B, 4E, 08, 83, E0, FE, 89, 0E, 89, 46, 0C, 8B, 46, 0C, 83, E0, EF, 83, C8, 02, 66, A9, 0C, 01, 89, 46, 0C, 89, 5E, 04, 89, 5D, FC, 75, 2C...
 
[+]

Entropy:
5.9822

Code size:
44 KB (45,056 bytes)

The file cae_downloader.exe has been seen being distributed by the following 27 URLs.

http://gsf-cf.softonic.com/c60/652/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75086&instance=softonic_it&type=PROGRAM&Expires=1482703456&Signature=Mj~83BCOoPzP9Z5B5BIxi2lRN8KLuawknK-mt95MbADDQo6jW3H5BLjnZzR-3VRLkJCkGvqvsPQRQ02naXGZgkk9OjasBcBS3FdpFWUqtnMWTZtFqfeQZornJHkqgZiJmN3Kc9-AhiMSD3p~nyi17~TWbN~JwXeeKfPfAAmcSOk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CAE_Downloader.exe

http://jeuxvideo.jetelecharge.com/.../gop.php?id=3343

http://combat-arms.softonic.it/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAP7F/eGrpctXdF6XTnr1dg/W1BnrE0lqiSoIUV0YTCBPQLwVUfdoP7ubPbMcpIT6Hz3wONguPnk4aAfr0MvA2Z5T/.../2rF7kdL49s8Ym4E5k=

http://dl1.jetelecharge.com/up/FYI2Yi73Ou/.../combat-arms-3343-jetelecharge.exe

http://www.jetelecharge.com/dl/3LdaifZCCm/.../combat-arms-3343-jetelecharge.exe

http://gsf-cf.softonic.com/c60/652/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75086&instance=softonic_it&type=PROGRAM&Expires=1468289783&Signature=BkI1uT0YH8I3zpQekmp114FGIsP79T3lyJTpzqfuXrraIrDB-qiqJlh2rOePsvymc5tuQrR6bhXG5-yuxcYxAL~TuFpjHaQaayHocRQ29TlI-nMI432OYmT2B4xrJKowVqGzuCHqmBRux6B~brNwyH-iJ0aH2sTke2cpCbBvP14_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CAE_Downloader.exe

http://www.indirveoyna.com/indir.php?id=1236

http://gsf-cf.softonic.com/c60/652/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75086&instance=softonic_it&type=PROGRAM&Expires=1477375452&Signature=OH9gymiTgSl3FnmJz8uXaRWAo4ZyRtNjgex5vLplVCuA1q5Oa-itlzIjjQRWfVe-wZUDDUq19PJ2LKGr7kRHNgyrBR1KtSMBONmgHXRyFcrAyBg2tClk7YIMcwMmyZQR7inV7LUEj~H3CT8oz1r3~E9Cb4-qrPiFZwW4qfgURqo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CAE_Downloader.exe

http://dl1.jetelecharge.com/up/P0EQPa1vvG/.../combat-arms-3343-jetelecharge.exe

http://gsf-cf.softonic.com/c60/652/.../file?SD_used=0&channel=WEB&fdh=no&id_file=75086&instance=softonic_it&type=PROGRAM&Expires=1472530229&Signature=U6f1jFNv~kPpSLx4aigPXd37~gsIeiIJYRSKOn9r3DrmJAKGUMFiEzY8jLDTwe7CC7ntZQSgUWW-JNzjEo-ZYkbdbDbIO6zHOZ9nfu-kj3PxTrLjE0jBZf~DXcIsVC8o03J2rLmSUxpP0dASswg6WDFA9lZGilqfCuaJ7CTtxHA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CAE_Downloader.exe

https://d1ob5g40gc5b6g.cloudfront.net/37/360405/.../CAE_Downloader.exe

Scan cae_downloader.exe - Powered by Reason Core Security