home

fantasy 2.0.exe

Tibia Player

CipSoft GmbH

This is a setup program which is used to install the application. The file has been seen being downloaded from download940.mediafire.com and multiple other hosts.
Publisher:
CipSoft GmbH

Product:
Tibia Player

Version:
8.54

MD5:
46523a0ffe008ce4022556b85ae3bb67

SHA-1:
31fa3b2b24bfb24fa778ddcdd532743f3eebc602

SHA-256:
874e116cc4b1069b080c89837cf3caeb2c2015aaa682e7fb61780fe5332609f7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 5:26:18 PM UTC  (today)

File size:
28.3 MB (29,664,381 bytes)

Product version:
8.54

Copyright:
Copyright (C) CipSoft GmbH 2002-2009

Trademarks:
Tibia is a registered Trademark of CipSoft GmbH.

Original file name:
Tibia.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\fantasy 2.0.exe

File PE Metadata
Compilation timestamp:
12/8/2009 7:45:51 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
786432:EiW22aLNRPUnM/UHc0HyxGzLC0aRkQihkWc:u22aLN5UnU0HyxiLLa5iSWc

Entry address:
0x3F1B33

Entry point:
E8, 00, 00, 00, 00, 60, E8, 4F, 00, 00, 00, BC, 4E, FE, D8, BC, 05, EF, 17, FB, 1C, 51, 77, 31, 15, F2, 2A, A9, 84, B9, 17, C2, B1, 11, 4B, C8, 33, E4, E5, 00, CC, 6D, BE, FD, 82, 99, 27, 4F, 03, 9E, EC, EF, A0, D0, 48, EE, 99, 36, E1, 74, 8D, C5, 17, 12, EE, F9, 46, 74, 8D, C5, 17, 12, EE, F9, 46, E9, 1A, 6D, 00, 00, E9, 2E, 6D, 00, 00, E9, 29, 6D, 00, 00, E8, 6E, FB, FF, FF, 6E, 04, 01, 00, 84, 99, 00, 00, 22, B1, 18, EA, 5E, 70, D1, 66, 40, 71, 74, 66, 74, 4F, 91, 1F, E3, 2B, D0, ED, 25, 31, 69, 75, 4B...
 
[+]

Packer / compiler:
MoleBox v2.0

The file fantasy 2.0.exe has been seen being distributed by the following 2 URLs.

http://download940.mediafire.com/i1vuq950jdjg/.../Fantasy 2.0.exe

http://download2179.mediafire.com/lidls6rb51ng/.../Fantasy 2.0.exe

Scan fantasy 2.0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.