flashgamesrockstarsetup_.exe

FlashGamesRockstar

APPsolute Technology Inc.

The application flashgamesrockstarsetup_.exe, “FlashGamesRockstar Setup ” by APPsolute Technology has been detected as a potentially unwanted program by 2 anti-malware scanners. The program is a setup application that uses the Inno Setup installer. During install, it bundles potentially unwanted software on a user's computer at the same time without adequate consent. The file has been seen being downloaded from i.azzercom.net.
Publisher:
APPsolute Technology   (signed by APPsolute Technology Inc.)

Product:
FlashGamesRockstar

Description:
FlashGamesRockstar Setup

MD5:
98d5fab65ba4cd749cf63a604ea20966

SHA-1:
57e97786079f398a30bff00e88c429eb8de9d743

SHA-256:
cb5f06f50ae7a0a0d89f6568a10751a2908a138b2a74d138466d06c6e323b37a

Scanner detections:
2 / 68

Status:
Potentially unwanted

Explanation:
May bundle additional potentially unwanted software such as adware during setup.

Analysis date:
11/5/2024 1:54:12 PM UTC  (today)

Scan engine
Detection
Engine version

Malwarebytes
PUP.Optional.BundleInstaller.A
v2015.06.01.11

Reason Heuristics
PUP.APPsoluteTechnology.Installer (M)
15.8.26.10

File size:
951.6 KB (974,424 bytes)

Product version:
1.0

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\flashgamesrockstarsetup_.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
2/11/2015 12:00:00 AM

Valid to:
2/11/2016 11:59:59 PM

Subject:
CN=APPsolute Technology Inc., O=APPsolute Technology Inc., L=Marshfield, S=Wisconsin, C=US

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
3D511A783C926067341FAC786A6CAF35

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:gQikKogzVWPW1bKWKVKGcZGvMyUxeN7jgCLJ79XfMz:g9LoGh1bKWwKrGuM7jgE9XU

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Entropy:
7.9795

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

The file flashgamesrockstarsetup_.exe has been seen being distributed by the following URL.

Remove flashgamesrockstarsetup_.exe - Powered by Reason Core Security