cod4mw.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from fileshare1180.dfiles.eu and multiple other hosts.
MD5:
9f9bbe9966044e56ae93e3c1c9fa376e

SHA-1:
3d00b19117936715607d0cdf1110c3186bbdc04c

SHA-256:
237c26677370e45723fa3377165f5d78da840dc60b571b7d49c3b8474a9286ab

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 12:58:18 AM UTC  (today)

File size:
53.5 MB (56,058,776 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\cod4mw.exe

File PE Metadata
Compilation timestamp:
12/1/2013 9:08:28 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:7b/1jico8DdH22g90pOL59cQIeNGVoR7kJcBssqtYyS:7bYmZHougpGRyqt4

Entry address:
0x108AF

Entry point:
E8, 9C, 58, 00, 00, E9, 78, FE, FF, FF, 55, 8B, EC, 83, EC, 04, 89, 7D, FC, 8B, 7D, 08, 8B, 4D, 0C, C1, E9, 07, 66, 0F, EF, C0, EB, 08, 8D, A4, 24, 00, 00, 00, 00, 90, 66, 0F, 7F, 07, 66, 0F, 7F, 47, 10, 66, 0F, 7F, 47, 20, 66, 0F, 7F, 47, 30, 66, 0F, 7F, 47, 40, 66, 0F, 7F, 47, 50, 66, 0F, 7F, 47, 60, 66, 0F, 7F, 47, 70, 8D, BF, 80, 00, 00, 00, 49, 75, D0, 8B, 7D, FC, 8B, E5, 5D, C3, 55, 8B, EC, 83, EC, 10, 89, 7D, FC, 8B, 45, 08, 99, 8B, F8, 33, FA, 2B, FA, 83, E7, 0F, 33, FA, 2B, FA, 85, FF, 75, 3C, 8B...
 
[+]

Code size:
98 KB (100,352 bytes)

The file cod4mw.exe has been seen being distributed by the following 21 URLs.

http://fileshare1180.dfiles.eu/auth-14858815925ded372c33684aabedf7a6-109.76.187.240-101245611-163757505-guest/.../COD4MW.exe

http://fileshare1180.dfiles.eu/auth-147292267734c2a650ef1ef2609de426-151.252.252.191-2670446935-163757505-guest/.../COD4MW.exe

http://fileshare1180.depositfiles.com/auth-14835451853d4fa182aef607ec6b4b8e-105.227.185.164-81221290-163757505-guest/.../COD4MW.exe

http://fileshare1180.dfiles.eu/auth-1472899606ed6bd6a0abc0525b1f36ba-90.209.178.35-2670139854-163757505-guest/.../COD4MW.exe

http://fileshare1180.depositfiles.com/auth-1463846502f6d4a703094f4b727b4845-206.126.125.41-2569997835-163757505-guest/.../COD4MW.exe

http://fileshare1180.dfiles.eu/auth-14830905600cbf76349b5a71f2ade233-109.101.51.39-77058340-163757505-guest/.../COD4MW.exe

http://fileshare1180.dfiles.eu/auth-14727504876741a24e3be108b74cec80-93.141.158.62-2668511067-163757505-guest/.../COD4MW.exe

http://fileshare1180.depositfiles.com/auth-144998684338b6fe7becb2477c1ad495-49.205.110.93-2391214955-163757505-guest/.../COD4MW.exe

http://fileshare1180.depositfiles.com/auth-147701441102fdf70feb9194ed6a01d1-74.78.46.204-16931609-163757505-guest/.../COD4MW.exe

http://fileshare1180.depositfiles.com/auth-14768681165e66d036aafc08d7b67280-174.131.227.10-15414578-163757505-guest/.../COD4MW.exe

http://fileshare1180.dfiles.eu/auth-146436264199155890d343c067fce9f8-93.136.123.37-2575858652-163757505-guest/.../COD4MW.exe

http://fileshare1180.depositfiles.com/auth-1465952227606c8f4127a15b6d75bff6-94.249.41.198-2593937116-163757505-guest/.../COD4MW.exe

Scan cod4mw.exe - Powered by Reason Core Security