home

faceoffmax-3.6.4.8.setup.exe

This is a setup and installation application. The file has been seen being downloaded from download2.faceoffmax.com.
MD5:
2295fb9f5bba1831faced19d73d6454a

SHA-1:
8cd49c618d0d41cea9c97d6a4edf7d123e94a6b0

SHA-256:
4ff02298d55245cbd9d645d8c2c572678b4dc89f908dab2d5af64c93ff35d6ad

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/14/2024 3:08:29 PM UTC  (today)

File size:
23.2 MB (24,286,710 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\faceoffmax-3.6.4.8.setup.exe

File PE Metadata
Compilation timestamp:
6/7/2009 12:41:54 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
393216:qeBRdtSVO8G46yaalaF0bVuin4FO6P7gm4YErMplGMX9k7BVuLugcGTkHut350JN:qP7OHFMdnqr0m4lsNtk1sSLI2yJqwVw

Entry address:
0x323C

Entry point:
85, EA, 75, 08, F2, BB, 7D, 9D, 34, 5C, FE, CD, 68, D5, 2A, FE, 00, 8A, FB, 75, 01, F3, 85, C0, BD, E1, 7D, 56, 1F, C7, C2, 97, E9, F8, 2D, F3, 81, FB, 3A, 34, 00, 00, 85, F7, 73, 0B, B0, 14, 8D, 35, B1, 66, 47, 71, F6, C4, 59, F3, 69, D8, 22, 1F, E3, F2, 88, E8, 89, D8, 85, E8, E8, 09, 00, 00, 00, 72, 02, 8A, FD, FE, C3, 4B, 3B, D6, 5F, 70, 02, 3A, DE, 0F, B6, F6, FE, CE, 81, C7, 51, EE, 02, 00, 46, 81, C7, 5B, 0F, 00, 00, 81, FB, 12, F6, 00, 00, 75, 0A, 89, D5, FF, C8, C7, C6, BF, D5, 01, 42, 50, 68, 23...
 
[+]

Entropy:
7.8798  (probably packed)

Code size:
23 KB (23,552 bytes)

The file faceoffmax-3.6.4.8.setup.exe has been seen being distributed by the following URL.

http://download2.faceoffmax.com/.../FaceOffMax-3.6.4.8.Setup.exe

Scan faceoffmax-3.6.4.8.setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.