ginkgo paint.exe

IC Install Program

This is a setup and installation application. The file has been seen being downloaded from www.gamegratis33.com and multiple other hosts.
Product:
IC Install Program

Version:
2, 0, 0, 16

MD5:
4f84f0d4175c7549db733285989f0da9

SHA-1:
becc4473466b1fe93ae46444521275012811595b

SHA-256:
952eb7df6bbbb92ac4aef2f154abce20048161bd43ea73733dbf93c212a6164f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/24/2024 6:17:12 PM UTC  (today)

File size:
564.7 KB (578,273 bytes)

Product version:
2, 0, 0, 16

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
7/29/2003 11:10:14 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:QKh+KZhEaWjp4okiMXS6TDN3DRKGMj/pmXJByt4QTk9piBpj:QiIaWVtG5NMdGJBjMk9QBB

Entry address:
0x227D0

Entry point:
60, BE, 00, 60, 41, 00, 8D, BE, 00, B0, FE, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Packer / compiler:
UPX 2.90LZMA

Code size:
52 KB (53,248 bytes)

The file ginkgo paint.exe has been discovered within the following program.

Pacxon 2  by Media Contact LLC
This is a video game distributed through the Game Top (gametop.com) download portal. The trial verison of the game includes an icon on the user's desktop 'Online Free Games' which links to a partner portals such as onlinefreegames.com.
www.GameTop.com
9% remove it
 
Powered by Should I Remove It?

The file ginkgo paint.exe has been seen being distributed by the following 20 URLs.

http://www.gamegratis33.com/take_out.php/af2d2171707cdcf6380a9cbfaf66ce4a/5269385969493268316f6f6b4b482f696e2f657a522e7379622e437a492e353932/.../setupGinkgo.exe

http://www.gamegratis33.com/take_out.php/aec6304addc7fb0e19c315d0a92ee7ed/526938596a5079683179706b48562f696e2f67772e556f2e75592e43774f/.../setupGinkgo.exe

http://davinder.dccircle67.com/realfileforsure/43f1339279cabef44f87e0fe86aa30b01b156951/3a93540f03/20160616102343/2016/02/.../setupGinkgo.exe

http://www.gamegratis33.com/take_out.php/140dcf78bf45a3b58b2f72635cd3fafb/52693859694732653072706b4c532f696e2f6532482e7271662e417a2e4a3737/.../setupGinkgo.exe

http://gsf-cf.softonic.com/bec/c44/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50329&instance=softonic_es&type=PROGRAM&Expires=1477324947&Signature=LqpOcA5L97levAYtR3YEGjJrx7-7UGt2kujJAxh3cTvVrbZmRG37IRoSvNxUhMOARxOF22frRdiTwYC7pcsOYqw3gS5f-MEP3qJZNg~xj8B9iJGqvvL7o-wNVcNKO9XqhoAdV3bn20aV52oADGDNcDhVNNAW4Kmk4Ab09QsK3es_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=setupgp1.exe

http://www.gamegratis33.com/download.php/0be5724797/21083b/0ac7a8b94/.../setupGinkgo.exe

http://s6956.chomikuj.pl/File.aspx?e=6GUOx3KgAU08sc709zC8u_jJQQCr3O-Q4wtUy1oDDRnaaAbdvaTwodfG1LZjmjB38ro4sOnT3sCj7Xso69Ahl4Pxs7vRa0HuM6aauPQRPfIZKu7GzLqAmYWO5jNA1wEb3qWGqyou5PHylk8g2QvlPw&pv=2

http://gsf-cf.softonic.com/bec/c44/.../file?SD_used=0&channel=WEB&fdh=no&id_file=50329&instance=softonic_en&type=PROGRAM&Expires=1464053328&Signature=TggprtFehX-KuTh1z67cH10EkYwopLqiuNw7uHzNPQnyY10i9AdQb3fGZi6UkI~7BNwACF1aBgZFHwz~F0pN9PWZRGikFgxbPUp3JCxnuPSZRbG2jmIODl~dlPn95ciE2-ahekQj0~hh94X0y6ZT6weBJJB0j3QTTLt9X-J21R8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=setupgp1.exe

Scan ginkgo paint.exe - Powered by Reason Core Security