fs15_kuhnvb2190.exe

GIANTS Launcher

GIANTS Software GmbH

This is a setup program which is used to install the application. The file has been seen being downloaded from kuhn-vb-2190.softonic.pl and multiple other hosts.
Publisher:
GIANTS Software GmbH  (signed and verified)

Product:
GIANTS Launcher

Version:
6.0.1.0

MD5:
bf59c42c04a08f5f98c01b38713d7b40

SHA-1:
7620483017c17405e037f4af19e3ea4728af14e5

SHA-256:
a6579c7f4dce44252df38b5ea623ba4595c43edb35b58c8220b2b0e71d3135dd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 1:36:50 AM UTC  (today)

File size:
5.6 MB (5,905,344 bytes)

Product version:
6.0.1.0

Copyright:
Copyright (C) 2014

Original file name:
modInstaller

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\fs15_kuhnvb2190.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
9/3/2012 10:04:41 PM

Valid to:
11/28/2015 11:14:51 AM

Subject:
CN=GIANTS Software GmbH, O=GIANTS Software GmbH, C=CH

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11215C6040FFE41475CAB97C15009882D254

File PE Metadata
Compilation timestamp:
10/29/2014 2:35:28 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
98304:KENZC8RKWEq26FXjCCnYxQ6jk9aBxoxx0yNBVY2JhVvmKD6yq1j6dK7W8A65kKqE:T+8RKWloxQw0x3BxrVvmKDuj6mWt6AC

Entry address:
0x5623

Entry point:
E8, A7, 1F, 00, 00, E9, 95, FE, FF, FF, FF, 35, CC, 44, 41, 00, FF, 15, 6C, D0, 40, 00, 85, C0, 74, 02, FF, D0, 6A, 19, E8, DC, 15, 00, 00, 6A, 01, 6A, 00, E8, 4E, 20, 00, 00, 83, C4, 0C, E9, 13, 20, 00, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 56, 8B, F1, C6, 46, 0C, 00, 85, C0, 75, 63, E8, 7F, 10, 00, 00, 89, 46, 08, 8B, 48, 6C, 89, 0E, 8B, 48, 68, 89, 4E, 04, 8B, 0E, 3B, 0D, 08, 3B, 41, 00, 74, 12, 8B, 0D, C0, 38, 41, 00, 85, 48, 70, 75, 07, E8, CB, 29, 00, 00, 89, 06, 8B, 46, 04, 3B, 05, C8, 37, 41, 00, 74...
 
[+]

Code size:
44.5 KB (45,568 bytes)

The file fs15_kuhnvb2190.exe has been seen being distributed by the following 9 URLs.

https://kuhn-vb-2190.softonic.pl/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAOI7jWCFSvMilY5Lr/ljFLUvn0DVy9J9nDjmVBVfH/zrFsVwucKDe5XRizI84B9k cLhdznr7r/1JSg7KO Bih5CcNbdpiD01SJg0UliQ8W0kd4LxWFOLnoEt5x68P4 2k1 NSE2ayy8M9mXoGPm47CjRKE3AFKtGXVDfwT2/EMTL7T6Q6/W 6UOoR8by7ecDVIAPW5soGqG/B/OllnpIgApMcDqqRR8GLzz weiXBIvtpToRjudbrn 5r9PGWfkgwx2 JgkxPt7EMT1dY8pWaD3dm2wJ4P9JEQNB5AUpgBuEONaGMm7Eg rqAQK8jlzCbuhL I EJ0kpu7CGAmzkxB5xYJOxRfieDJ9Tb25t0U 6wd7R2uZoDdr5SC R9 G5O0TY25H6 Zuu0OWKGasa/hw3 Doj/4JDALyG1jLramX3EIRendsLHyIBsCNZN6Co1dVdm5tg2PoZs6pCjQFjcsyxlbV5KhKfeu 0FrrFFt2BpV0WPnyHSOPueiEgggMjqYYQaxCZs/PCbuZKILayE0lgqzCgyKMlJwnNd0gzfUYX57hxds2m U/oDa8NzTgI4yXtsxDK4X/YKC47RGj4a/h/.../nmtrJMumj4CRIQVsjcqk3eiA=

https://kuhn-vb-2190.softonic.pl/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAOI7jWCFSvMilY5Lr/ljFLUvn0DVy9J9nDjmVBVfH/zrFsVwucKDe5XRizI84B9k cLhdznr7r/1JSg7KO Bih5CcNbdpiD01SJg0UliQ8W0kd4LxWFOLnoEt5x68P4 2k1 NSE2ayy8M9mXoGPm47CjRKE3AFKtGXVDfwT2/EMTL7T6Q6/W 6UOoR8by7ecDVIAPW5soGqG/B/OllnpIgApMcDqqRR8GLzz weiXBIvtpToRjudbrn 5r9PGWfkgzl5K/bx99D4kA/bYs KykcJLRCz/O2y/OC60HWTXbEGGCooL0gKMUdNgvNX83LQODQQGm5QCmN6vp9Vo35i1TQK MfCsuHQAIZB8NY8a5BhYhoMaqaa9E9uioAGY pn121 AWaeZ5GXXTbrtnuXaKdAJVwCUV5xoj1J1EssPjUTEwvID50xaiZI2qTabmI03MSdiZOyjx fWvvP6F3LWDjya6szPS/0aLyRgKCWAdfGXQeHMC9SVQu CburxdW53adV4Fh9N1S6EZNN6qSdHlFqXZoSMSAYQdlBK5SeZDTdX57hxds2m U/oDa8NzTgI4yXtsxDK4X/YKC47RGj4a/h/.../nmtrJMumj4CRIQVsjcqk3eiA=

http://ls-world.pl/.../15637

Scan fs15_kuhnvb2190.exe - Powered by Reason Core Security