jc2_demo.exe

Square Enix LTD

This is a setup program which is used to install the application. The file has been seen being downloaded from data2.mujsoubor.cz and multiple other hosts.
Publisher:
Square Enix LTD  (signed and verified)

MD5:
4f241bc501243b793dfaf8041e07ec5b

SHA-1:
f4131255bf8b8debd00fbd5dbddc39da10ad99fe

SHA-256:
9f6dc451a933dce67e1863222a65da2a82b5bc21ab71ec45aa330698e6660a44

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 2:33:07 PM UTC  (today)

File size:
1 GB (1,126,448,336 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\jc2_demo.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
1/5/2010 1:00:00 AM

Valid to:
1/5/2013 12:59:59 AM

Subject:
CN=Square Enix LTD, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Square Enix LTD, L=London, S=Greater London, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
733DCDF211A91DC4231CD94E1586B27F

File PE Metadata
Compilation timestamp:
8/16/2009 1:05:35 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
25165824:GguYOjo52ypHmAgDdPTMA9I8tgD4q16rfVvvTdIJ4zqkoznWi:GguXjnRhV9VgkRrpTdY4zkzR

Entry address:
0xA7D8

Entry point:
E8, E3, FE, FF, FF, 33, C0, 50, 50, 50, 50, E8, 54, 2B, 00, 00, C3, 56, 57, 8B, 7C, 24, 0C, 8B, F1, 8B, CF, 89, 3E, E8, E2, A7, FF, FF, 89, 46, 08, 89, 56, 0C, 8B, 87, 1C, 0C, 00, 00, 89, 46, 10, 5F, 8B, C6, 5E, C2, 04, 00, 8B, C1, 8B, 08, 8B, 50, 10, 3B, 91, 1C, 0C, 00, 00, 75, 0D, 6A, 00, FF, 70, 0C, FF, 70, 08, E8, C1, AC, FF, FF, C3, 55, 8B, EC, 83, EC, 1C, 56, 33, F6, 56, 56, 56, 56, 8D, 45, E4, 50, FF, 15, 30, 22, 41, 00, 85, C0, 74, 21, 56, 56, 56, 8D, 45, E4, 50, FF, 15, 34, 22, 41, 00, 8D, 45, E4...
 
[+]

Code size:
66 KB (67,584 bytes)

The file jc2_demo.exe has been seen being distributed by the following 26 URLs.

http://data2.mujsoubor.cz/downloadFile.php?n=anVzdC1jYXVzZS0yXzIuZXhl&s=34pp4rdlm483mn75pnr239nf41&r=5a1d9e4979720c8a5ccd47f296adf8b7

https://www.videogamer.com/download?key=downloads/.../JC2_demo.exe

https://d1ob5g40gc5b6g.cloudfront.net/40/399985/.../JC2_demo.exe

http://www.laboratorycenterconecpt.com/o5jHdfpHeMXeTkeM986UTNEFNPMtsDRb0ppgCa_ru69mfmEP8YxIps__fsXzYOWz_veg eqKSwIzl7lrW_t0c xdAMgkLfXI5Ff 63KEeIaS u7BwcGNim2Mq nnBD22LS5ubppCvvJDOlcvfQ1P07o7UMeyPbtsl7_2SIZDEplT 3kp8VZ90iO9eD1W6679pO8rD2p7CDBBC3D09ngv7D8wpkPSC46tqr7Io8RCVN6ufXDUJqiMuKFl_M10mDh7xh7X4lDVh4uO2nPmUQX3MHDgmaqdaixJN3QH69Hm3tLUocN54c H7 OpY_W9QevyUYsronTGt7GX09PD0SC1iZZ5pNZujh9hTDNbt3EEKDyOP25a2YpJTcTfF5nP91aD46zaC6SmmIreoD9oNOVdZa77JrGTVI5I6bWxDuB_a4i57AKLWBPGFchPd953DD3MjD 0jcYjrIXfS5luL Gzw_tW3MxePDVsSNQ1wiBt73csAtiRm84A1S_3c1WkGeME_WBrLVpIM6LiJvFrhJHnzCTyPNH q9JRO6LTNDLF96xWUolKQ4yLU0IU9XlTJYwyupbT_DOsENU8rUGtcx_Zb4Z1r AoSzmPXn5oXJEo_ghfTlvJO4Q=-G0IAAOS5YWyCB5VssxS3N0wnEOxNRGlIIvl1oFv1kahpbycJKIN6FHMC7tGOLyB4Zs4EKbuIDLW4hkOz_gI=-e

http://dw.uptodown.com/dwn/P7SsU65SdTJP5tJYe5cC50MfR4mhZj4KtOYxsA_VJwrV6rl0TE2F_8DaeweGMzFqj09-BCD68bw2_aBYeFeI1q9ZKNIpWykxL3rk-83Yqczbp1SiB2f9ASKTxsJKxJJb/1dICQAYVfKZh01AAbnF5ji3PB3k2AE1OE9XgTh_KmF8-ak9UF4wYt3lyusSo08gt7CEizLWA7gMuJKs6ntD9zboOYsu0iGHtGMNFPTrJ7QX11RifIyJf78Ets_C5H8u2/.../

http://dw.uptodown.com/dwn/uuX9ShvSDZgW38HEd99DJFMJkPsBHgocWZ2W67ACh3YvBHXdzflIFGjcJcl3sGXbqJgIaZ8TuojOLb6pNxXh50comX33pZqu-IR5lIKZhGrrmQR1qXleNNXJNngnyohf/IQ5PlXBeFiQ1qZu2oelwNv2KSpL-K3uu6TlpZkBZJ9AEX0DSH3qJviyu50N4BLx5V9APSKsxcwYHpJErU1j6KyPiOQv_e8auErIFOFCu8owxMtUVNx_X8MnMORw2nHcn/uMkTnsG4JAsF9dNAU-tBegReCGm76ubuCBq0HAeZRbuTGU1clFZkoJobkdVz5ITa1V-Y71rrdjlaXrbyE2iAd9-wFIzcCTRABR8S4u7Pk6KDN0578Q59lx48KCN4Soiy/.../

http://data2.mujsoubor.cz/downloadFile.php?n=anVzdC1jYXVzZS0yXzIuZXhl&s=n0japrnd6l6oaskcooq49cm9b4&r=602f83f03c8c96a1bf04fd87cc3ef478

http://dw.uptodown.com/dwn/TceTjaqqnzhpVfVlGZ7heEiBTCUCLwkO8XQb0hvz7REcd8_cTuw0vbkgmbJdgxrtLNggHRVhusqaFmMMvDUUmsPcJ8j0cTeIOnhyN0547c8ueAlvyrI_rFkBIUSwNwFu/f53Lx8ITW3h45CcuGgwf3ILXZ9YnK41d_x8vF1NgkLkFAAJMSlBOBK_0rzmWn7StfcZXsAPpNQ8GYnmNIsMWqjN0e3njiFGSd_Ra4Q5YZglUqJ3cWdoifOzFbpAWHYTr/.../

http://download.fileplanet.com/ftp1/.../JC2_demo.exe