» codmw2-iw4play.exe
Overview
Analysis
File Details
Downloads (36)

codmw2-iw4play.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from fileshare1190.depositfiles.com and multiple other hosts.

File name:

codmw2-iw4play.exe

MD5:

a7c99067dbc2607f73a3c42a13f4aa86

SHA-1:

e3cc83294bc3174648501fd492a6ad2688922f95

SHA-256:

61b003dfa05f0c1378c63ac101b6e80882e9f2274cb9188d6c8c5f43bbe936c9

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

12/27/2024 6:10:11 AM UTC (today)

Scan engine

Detection

Engine version

Qihoo 360 Security

HEUR/QVM41.1.Malware.Gen

1.0.0.1120

File size:

51.1 MB (53,582,693 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\codmw2-iw4play.exe

File PE Metadata

Compilation timestamp:

12/1/2013 9:08:28 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

393216:rEGXEm14Lc8dxewrZLSXV7RfDwgg/02f6k+ffcF/CI8ubGc:runddrZLSRRfDwgG96k+ff4/CI8aGc

Entry address:

0x108AF

Entry point:

E8, 9C, 58, 00, 00, E9, 78, FE, FF, FF, 55, 8B, EC, 83, EC, 04, 89, 7D, FC, 8B, 7D, 08, 8B, 4D, 0C, C1, E9, 07, 66, 0F, EF, C0, EB, 08, 8D, A4, 24, 00, 00, 00, 00, 90, 66, 0F, 7F, 07, 66, 0F, 7F, 47, 10, 66, 0F, 7F, 47, 20, 66, 0F, 7F, 47, 30, 66, 0F, 7F, 47, 40, 66, 0F, 7F, 47, 50, 66, 0F, 7F, 47, 60, 66, 0F, 7F, 47, 70, 8D, BF, 80, 00, 00, 00, 49, 75, D0, 8B, 7D, FC, 8B, E5, 5D, C3, 55, 8B, EC, 83, EC, 10, 89, 7D, FC, 8B, 45, 08, 99, 8B, F8, 33, FA, 2B, FA, 83, E7, 0F, 33, FA, 2B, FA, 85, FF, 75, 3C, 8B... 
[+]

Code size:

98 KB (100,352 bytes)

The file codmw2-iw4play.exe has been seen being distributed by the following 36 URLs.

http://fileshare1190.depositfiles.com/auth-1480136504f811a6ee6375fc59544aac-173.31.240.107-48660517-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14740588888a14876705fe89d4679e24-2.35.40.82-2683762978-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-148327981722270a9745c72b47fa4ff6-49.146.35.15-78704101-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14762774649fbb99c292bec552caa89c-178.40.171.100-9560111-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-14802676874acd033c23cdf645469a34-151.63.133.198-49993379-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-1476558384d23f2b15deb5eeb4df5234-80.53.81.93-12408933-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-1478961451d0465d7f42c81c3c5b686f-79.36.244.164-36852953-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-147329117679954fe2e5c3a653a64ea6-82.57.155.138-2675211286-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-14685976533a8ee3f20e6fc2f79191aa-188.83.56.102-2622122712-165921980-guest/.../CODMW2-IW4PLAY.exe

http://fileshare1190.dfiles.eu/auth-1480761846f84174b8361e4ace682a91-82.245.198.46-54602120-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-1478106890a1fb3f111b9e1cf07b618e-78.63.164.152-28385017-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14743848849ad35b5d2f4ba3f6d6fa3c-79.106.109.155-2687220603-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14780950885149a22b48430cc6b9036a-87.11.12.77-28233655-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14804631538cdcc843591c25fe7fe398-75.185.153.123-51884860-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-1482083091a01ab2580be7f8a29e720e-79.55.198.79-67422114-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-1473338554bfbb3a5a3594fcd1ca53c3-80.116.56.74-2675677227-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-147648611546fec57886f87bd82edbea-98.224.173.36-11641360-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-1472314705709ee7f0f09f2b18a6c31e-208.131.188.95-2663614907-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-1472043645b559d2f71f371bf437c682-79.40.93.253-2660641079-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14710996403744fb94e4bded87c5fa48-49.207.184.107-2649338438-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14774203348a1fd9269411911a7b6089-87.16.4.65-21032630-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-1478294063391bed513ed8e4615b975c-86.96.27.70-30325231-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-1481200812aad830e3e3957c5e65f546-95.247.79.165-59029948-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-14743189495c6b8230ff324870071656-79.30.131.153-2686604197-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-1475761180c6cf602ddf5b9b290297bc-5.43.83.168-4304506-165921980-guest/.../CODMW2.exe

http://fra-7m22-stor08.uploaded.net/.../100c6ccb-bd1c-42cd-bb95-63bdd81f607e

http://fileshare1190.depositfiles.com/auth-147368954842db68b3c75aea57b4703e-95.250.25.178-2679720184-165921980-guest/.../CODMW2.exe

http://fileshare1190.depositfiles.com/auth-147690295248c3a70eeaee254c03afaf-83.10.212.101-15854032-165921980-guest/.../CODMW2.exe

http://fileshare1190.dfiles.eu/auth-1477587640c0c225c102a95476ffe20e-94.21.201.154-22753566-165921980-guest/.../CODMW2.exe

http://fra-7m22-stor08.uploaded.net/.../769c2371-90e4-4ff0-bce9-948c0b447fda

Latest 30 of 36 download URLs

Scan codmw2-iw4play.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.