home

gamai.ru launcher 2.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from gamai.ru.
Version:
1.0.0.0

MD5:
4a01b61573e8d771cde3fe3a9fec43de

SHA-1:
f72964a31430f9f28f5fc49eb330b6f7f53a18e4

SHA-256:
51403311b6b6863bbf2fb048ec6d77fdbd7f0ba0599d306777f3103473068f90

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 2:51:51 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.RDM.48!5.36[F1]
23.00.65.15930

File size:
4.1 MB (4,300,800 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
10/31/2014 8:41:15 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:Fhnsx4eAGZ4ZQSCnysglaomgkXQJXwQyeW+VBT8bESHCEaMv5:vsyXatgZkXQJ0+VCbEIa

Entry address:
0x2B0F30

Entry point:
55, 8B, EC, 83, C4, F0, B8, CC, 4D, 6A, 00, E8, A4, D3, D5, FF, A1, 90, F2, 6B, 00, 8B, 00, E8, 84, 68, F0, FF, A1, 90, F2, 6B, 00, 8B, 00, B2, 01, E8, C2, 85, F0, FF, 8B, 0D, 4C, EB, 6B, 00, A1, 90, F2, 6B, 00, 8B, 00, 8B, 15, D8, 3A, 6A, 00, E8, 76, 68, F0, FF, A1, 90, F2, 6B, 00, 8B, 00, E8, CE, 69, F0, FF, E8, 51, 81, D5, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.7 MB (2,814,464 bytes)

The file gamai.ru launcher 2.exe has been seen being distributed by the following URL.

http://gamai.ru/.../Gamai.Ru Launcher 2.exe

Scan gamai.ru launcher 2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.