home

crysis3.exe

Crysis 3

Crytek GmbH

This is a setup program which is used to install the application. It runs as a scheduled task under the Windows Task Scheduler. The file has been seen being downloaded from s7873.chomikuj.pl and multiple other hosts.
Publisher:
Crytek GmbH

Product:
Crysis 3

Version:
1.0.0.1

MD5:
b3726df94b9c167356c779fb0780fdbd

SHA-1:
cb081bb8a408c1469ddef734e9be57ca1faef606

SHA-256:
62fc63c7c5209dc974df67d28b517960b7ec35ec3234f10f0581395ae4075481

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/5/2024 3:22:32 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.14216

File size:
31.5 MB (33,061,376 bytes)

Product version:
1.0.0.1

Copyright:
(C) 2013 Crytek GmbH

File type:
Executable application (Win32 EXE)

Language:
English

File PE Metadata
Compilation timestamp:
7/29/1971 3:22:08 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
393216:mnx8Gbj5BObfyXUGA8KtcjnSkN0//j5G02EDTnmns0UTosufavbljjOxuy1:mnHbjubSzA8KXkNYVD2E/mnf9yvhuM

Entry address:
0x527A56C

Entry point:
68, 44, A0, 27, 3C, FF, 15, 28, A0, 27, 3C, FF, E0, 46, 55, 43, 4B, 20, 59, 4F, 55, 2C, 20, 79, 6F, 75, 20, 75, 6E, 67, 72, 61, 74, 65, 66, 75, 6C, 20, 62, 61, 73, 74, 61, 72, 64, 73, 20, 21, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Code size:
40.4 MB (42,337,792 bytes)

Scheduled Task
Task name:
{429FE770-63B0-4C70-AB27-60B13952F7A0}

Trigger:
Registration (Runs on registration)


The file crysis3.exe has been discovered within the following programs.

Crysis®3  by Electronic Arts
Crysis 3 is a video game distributed through EA's Origin digital distribution and digital rights management content delivery system.
www.ea.com
9% remove it
Persian soft  by Persian soft
www.persiancompany.com
About 3% of users remove it
 
Powered by Should I Remove It?

The file crysis3.exe has been seen being distributed by the following 2 URLs.

http://s7873.chomikuj.pl/File.aspx?e=00WxFh1oXUHqyNKIG2p14INCjM5c-OOYhQbu6z149ZaiimUuijfBLFlReU9vrDYnSjHKBvJK0DfEhmoHOkHcUyi2YzrmGzC4_gE_c-WO4eGamWAeiFRnqWW2K6bDmRXFzUcSpXZc_ugR4UIUe0hiSg&pv=2

http://dc652.4shared.com/download/.../Crysis3.exe

Scan crysis3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.