kasparovchessmatesetup.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from cdn.games4windownloads.com and multiple other hosts.
MD5:
17f862e6c797cfaf2466b5794772e80f

SHA-1:
73b634a4789fa340a0c670cb9d27f1a31799b93d

SHA-256:
aee8afc8524f3d32b00c6638b1c244c7b345018ca7819a4e15b481c05d61ea4e

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/23/2024 10:07:38 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Heur.dropper
2016.0.3225

File size:
9.3 MB (9,733,987 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\programs\kasparovchessmatesetup.exe

File PE Metadata
Compilation timestamp:
10/1/2009 11:29:45 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:rFKNf2PHdQJ/wKg3bryKrtg+iuOg5S71T8Pcal6:5ofUdQVpg3XJ2+75M1T8xl6

Entry address:
0x19155

Entry point:
55, 8B, EC, 6A, FF, 68, 88, 38, 42, 00, 68, 64, CD, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, F8, 20, 42, 00, 33, D2, 8A, D4, 89, 15, 74, C0, 42, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 70, C0, 42, 00, C1, E1, 08, 03, CA, 89, 0D, 6C, C0, 42, 00, C1, E8, 10, A3, 68, C0, 42, 00, 33, F6, 56, E8, 4B, 3B, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 16, 38, 00, 00, FF, 15, 14, 21, 42, 00, A3, 04, D6, 42, 00, E8...
 
[+]

Entropy:
7.9962

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
131 KB (134,144 bytes)

The file kasparovchessmatesetup.exe has been seen being distributed by the following 4 URLs.

http://cdn.games4windownloads.com/tZXIIx_7wlfBEUwCNDlR_jHETrplIRnAurzcSvcjGQj90tpbLmvxE yDEWEuEiUvxykwwOn4k9Ok9ypXfXREwDUOltHGM57Bxz1BytJEUChOcb4CPLUy5coaziax28Fwv5OIjaDAXtV3wpabtVNW0Og5uQuSim0y3ivpZ2latUR6CKYdlK_C_EvvliZw5 qov6 vvObSlhK88nYVdPB6nuUlvuNcr2YK2gHLomZDyhqR4dWmtRpcp4BADt4Y_kIJYg6RTfLIUwlZUB 8vplTPUegJ5prme8VUYyhbPgTqyG73pn4F6OomI7XdZfGch5urmsA5Q2iovH3uOomddMq3BDp2OfKGZSb3uJJXXU3QeadJKj0X244RHr3PePW6yjln4lfCllz-G0EAAETnFhsUQzMaDYnwTYPKAFFwyIHD9wSTQC3YGDtTwdPMNYZbeXPHRFs2HLJ_CW7iKnayDrgvCXTEVcIH-e

http://cdn.games4windownloads.com/7fsImSYBgLwAy_SwE1MBmR5J97f2I05xEKjk9NNZeWew39GPjCWEcbPnwLG7yBdI1mAyv_r4Wj8bi2rh29AuHq4zfbgiNu4F2Jkp040QhhF4dxvj2O1C_ PKJvI5OIokdSxMYWrFjlLN7VVVLFi578uOH CVj2hzIATNfi3jejQi2dfmHiydiob B_sTZN3fZL50uiQDWLPoPw_X9mz8WZOhr7OanQ==-G0EAAETnFhsUQzMaDYnwTYPKAFFwyIHD9wSTQC3YGDtTwdPMNYZbeXPHRFs2HLJ_CW7iKnayDrgvCXTEVcIH

Scan kasparovchessmatesetup.exe - Powered by Reason Core Security