diablo-iii-8370-zhtw-installer-downloader.exe

Blizzard Downloader

Blizzard Entertainment, Inc.

Publisher:
Blizzard Entertainment  (signed by Blizzard Entertainment, Inc.)

Product:
Blizzard Downloader

Version:
3, 0, 0, 1668

MD5:
114a8d0381f3b58bb753e4da71046565

SHA-1:
2d62801126e37e133480bbc03dffd6a330a2ba6e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/28/2024 2:10:06 PM UTC  (today)

File size:
7 MB (7,340,024 bytes)

Product version:
3, 0, 0, 1668

Copyright:
(c) 2004-2011 Blizzard Entertainment

Original file name:
BlizzardDownloader.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\documents and settings\administrator\桌面\diablo-iii-8370-zhtw-installer-downloader.exe

Digital Signature
Authority:
Thawte, Inc.

Valid from:
9/30/2011 8:00:00 AM

Valid to:
12/5/2013 7:59:59 AM

Subject:
CN="Blizzard Entertainment, Inc.", OU=TECHNICAL SUPPORT, O="Blizzard Entertainment, Inc.", L=Irvine, S=California, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
7DF5743025E2C2202A6BBD0AF8E570FC

File PE Metadata
Compilation timestamp:
3/14/2012 10:03:03 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:zK3YqjAqHH1ADmpNcWrvCHjZAyYoHpyak:zKoY1fzcevCDZNJyak

Entry address:
0x209183

Entry point:
E8, 1C, D4, 00, 00, E9, 89, FE, FF, FF, 3B, 0D, 58, 79, 81, 00, 75, 02, F3, C3, E9, A3, D4, 00, 00, 8B, FF, 55, 8B, EC, 83, EC, 20, 83, 65, E0, 00, 57, 6A, 07, 33, C0, 59, 8D, 7D, E4, F3, AB, 39, 45, 10, 75, 15, E8, 0D, 0C, 00, 00, C7, 00, 16, 00, 00, 00, E8, AF, 84, 00, 00, 83, C8, FF, EB, 78, 8B, 4D, 0C, 56, 8B, 75, 08, 85, C9, 74, 19, 85, F6, 75, 15, E8, E9, 0B, 00, 00, C7, 00, 16, 00, 00, 00, E8, 8B, 84, 00, 00, 83, C8, FF, EB, 53, B8, FF, FF, FF, 7F, 89, 45, E4, 3B, C8, 77, 03, 89, 4D, E4, FF, 75, 18...
 
[+]

Entropy:
7.3138

Code size:
3.1 MB (3,237,376 bytes)

Windows Firewall Allowed Program
Name:
C:\Documents and Settings\Administrator\桌面\Diablo-III-8370-zhTW-Installer-downloader.exe


The file diablo-iii-8370-zhtw-installer-downloader.exe has been seen being distributed by the following 4 URLs.

http://205.196.122.212/56cylr15u9ug/.../Diablo-III-8370-zhTW-Installer-downloader.exe

http://199.91.153.156/qc25cw629yhg/.../Diablo-III-8370-zhTW-Installer-downloader.exe

Scan diablo-iii-8370-zhtw-installer-downloader.exe - Powered by Reason Core Security