home

crossfire_downloader.exe

BuddiePay LLC

Publisher:
BuddiePay LLC  (signed and verified)

MD5:
52f6a8df7a0c893c2ecb9a7abe77419d

SHA-1:
607598f46030e6217aa50b821701eb39f6e871e6

SHA-256:
5a3c38ffce02794c10cb4991281a8c8969e971e799e305b53f4f7b10cf306b79

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 1:13:30 PM UTC  (today)

File size:
3.7 MB (3,907,144 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\crossfire_downloader.exe

Digital Signature
Signed by:
BuddiePay LLC

Authority:
COMODO CA Limited

Valid from:
1/26/2012 7:00:00 PM

Valid to:
1/26/2014 6:59:59 PM

Subject:
CN=BuddiePay LLC, O=BuddiePay LLC, STREET=1201 N Orange ST Suite 763, L=Wilmington, S=DE, PostalCode=19801, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
153D8E0A03259F0187ADD806132C0B1B

File PE Metadata
Compilation timestamp:
1/30/2012 5:18:19 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:DrSN9Hk5K0Odx/+Lyul0tZjQOX9a9q4p0/doDO:fSNdj9Ilnpp0/dz

Entry address:
0x3A6B

Entry point:
E8, 3A, 35, 00, 00, E9, 78, FE, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, AC, E0, 40, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, AC, E0, 40, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 8B, 4D, F4, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F...
 
[+]

Entropy:
7.0818

Code size:
39 KB (39,936 bytes)

Scan crossfire_downloader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.