deliciousemilysbigsuprise.exe

Delicious: Emily's 8 Story

VELOCITY | ~HTTP://RAZZ.OWNS.IT~

Publisher:
VELOCITY | ~HTTP://RAZZ.OWNS.IT~

Product:
Delicious: Emily's 8 Story

Description:
Delicious: Emily's Big Suprise

Version:
1.0.0.0

MD5:
3f40ffe3552f1d5ab5eddc742bcadb94

SHA-1:
85626e3204db967957771a04855ff9f463dd3328

SHA-256:
f5ed4ca10d0a7243b1f0d1f35c404ce61f1839bd6abb10a447166cfc5d6ded93

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/27/2024 5:23:57 AM UTC  (today)

Scan engine
Detection
Engine version

McAfee
Artemis!3F40FFE3552F
5600.6536

Trend Micro House Call
TROJ_GEN.R0C1H05CK15
7.2.364

VIPRE Antivirus
Backdoor.Graybird
39944

File size:
1.3 MB (1,384,960 bytes)

Product version:
1.0.0.9

Copyright:
Copyright © 2011 GameHouse, Inc. All rights reserved.

Original file name:
GHDeliciousEmilys 8 Story.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\delicious - emilys big surprise\deliciousemilysbigsuprise.exe

File PE Metadata
Compilation timestamp:
6/13/2012 4:57:57 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:LdHdMqLlOjcaBS8H+YLBREUYmsuhJeL5A5rEFPKNZ:nMKGBH9LvQmO5A+iH

Entry address:
0x1000

Entry point:
B8, 4C, 24, 8E, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, B3, C5, B0, B2, F0, 10, 03, AD, BC, 33, C0, 41, FB, F7, A4, F1, 9F, 3B, B9, 03, 90, F3, E1, C2, B3, 1D, D9, E3, 4A, 8F, F1, 83, A6, 7D, FC, 7E, 67, BB, 9F, 80, 5D, 74, 76, 3F, AB, 8D, 30, AA, A2, 82, 89, 6A, 15, 08, E9, 4F, D4, 9E, 15, BB, 68, 31, 56, B2, BF, 2F, 3B, 6A, 94, 36, 5A, CF, 76, D7, A7, EC, CC, 76, 43, 1F, E3, 57, C8, D0, 60, E8, DD, 8C, D8, 2A, 41, 72, 1B...
 
[+]

Packer / compiler:
PECompact v2

Code size:
3.3 MB (3,465,728 bytes)

The file deliciousemilysbigsuprise.exe has been discovered within the following program.

www.foxygames.info
10% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):
Connects to 150.34.13.149.zylom.net  (149.13.34.150:80)

Scan deliciousemilysbigsuprise.exe - Powered by Reason Core Security