geometrydashpublic.exe

MD5:
c38a53fe1cf732541bdd1b30e1faf65b

SHA-1:
7a5516d7f9f38fbe8d1bbd2e6ed136995b482103

SHA-256:
4d971f2c3d656e831443a9446fba4692edd8f83e88d7af9068779d2cff923de4

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 7:54:40 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594 [F]
23.00.65.151222

File size:
6.1 MB (6,404,608 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\geometrydashpublic.exe

File PE Metadata
Compilation timestamp:
9/23/2015 11:57:27 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:Hvh7/DxB0KJbr0hFj3WYerdw6xfS+w6xfSF/wsRJ5AzpKV/m2ASxS:p7/9xJazWbVxfS+VxfSFIpKV/BASY

Entry address:
0x5922EE

Entry point:
53, 51, 52, 56, 57, 55, 8B, EC, 81, EC, 00, 10, 00, 00, C7, 45, 80, EC, 3A, 99, 00, 8B, 75, 80, B9, C0, 00, 00, 00, 8D, BD, 80, FC, FF, FF, F3, A5, 8D, 85, 80, FC, FF, FF, 89, 85, 74, FC, FF, FF, C7, 85, 44, FC, FF, FF, E5, 71, C6, A8, 8B, 85, 44, FC, FF, FF, 89, 85, 1C, FC, FF, FF, 8B, 85, 74, FC, FF, FF, 89, 85, 28, FC, FF, FF, B8, 00, 03, 00, 00, C1, E8, 02, 89, 85, 24, FC, FF, FF, 83, BD, 24, FC, FF, FF, 00, 7E, 4E, 8B, 85, 28, FC, FF, FF, 8B, 00, 89, 85, 20, FC, FF, FF, 8B, 85, 28, FC, FF, FF, 8B, 00...
 
[+]

Entropy:
6.2725

Code size:
1.7 MB (1,820,160 bytes)

The file geometrydashpublic.exe has been seen being distributed by the following 4 URLs.

Scan geometrydashpublic.exe - Powered by Reason Core Security