home

casinosetup.exe

Playtech Software Installer

Playtech Software Ltd.

This is a self-extracting archive and installer. The file has been seen being downloaded from banner.casinoplex.com.
Publisher:
Playtech  (signed by Playtech Software Ltd.)

Product:
Playtech Software Installer

Description:
CASINO PLEX

Version:
13.2.11.0

MD5:
f0bb41529f5172eae8cb971665bc54b6

SHA-1:
e6c622ca5b897afd407ed2ae78415b7369f27403

SHA-256:
aa8399b3f790e280d1bba82b1e60607f542d6969531874dbbdd91b6f0e844b09

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 8:36:35 PM UTC  (today)

File size:
313.8 KB (321,376 bytes)

Product version:
13.2.11.0

Copyright:
Copyright (C) 2001-2009 Playtech

Original file name:
CasinoDownloader2.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\casinosetup.exe

Digital Signature
Signed by:
Playtech Software Ltd.

Authority:
VeriSign, Inc.

Valid from:
10/21/2014 4:00:00 PM

Valid to:
10/21/2017 3:59:59 PM

Subject:
CN=Playtech Software Ltd., O=Playtech Software Ltd., L=Douglas, S=Isle Of Man, C=IM

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4BCCAA7A2D896D3B2B5214ECAEE92EEA

File PE Metadata
Compilation timestamp:
1/17/2014 2:14:13 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:lCv889gvgQ33+UiKRXuJ1QDLLuwfL6kaxGwL+ILYXplRzdNBnd:ov/gg6zhXiQDfhL6kdwL+IgzRz3Bnd

Entry address:
0x3533C

Entry point:
B8, 10, 06, 58, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, FE, 8A, 94, 95, 4F, 05, 32, 51, 76, 31, 1E, D9, D6, 24, 90, 27, 23, 8A, 89, AD, 06, 1E, E6, 48, 9A, E4, DF, 39, 72, D3, 6C, FE, DA, 5A, 1C, A1, 56, AE, D8, 13, 35, 0F, 3E, 87, 2E, F7, C9, F3, 8E, 0A, A2, DB, 6B, DF, 68, 3E, 68, B1, 10, 06, 42, 81, 52, 70, 8D, 0C, 33, 87, 31, 15, B9, F1, E3, 5C, 59, 59, 44, E8, 1D, 2F, D7, 9F, 42, 59, EC, C2, BD, 73, 7C, F8, 23, 6C, C9...
 
[+]

Entropy:
7.7755

Packer / compiler:
PECompact v2

Code size:
338 KB (346,112 bytes)

The file casinosetup.exe has been seen being distributed by the following URL.

http://banner.casinoplex.com/.../SetupCasino.exe

Scan casinosetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.