luz-da-escuridao1-lihapi.exe

Fancy3D Launcher

Fancy Guo Ltd.

This is a setup program which is used to install the application. The file has been seen being downloaded from res-hg.gamesow.com and multiple other hosts.
Publisher:
Hongfeng Hengyu (Beijing) Tech Ltd.  (signed by Fancy Guo Ltd.)

Product:
Fancy3D Launcher

Version:
0,15,0323,1430

MD5:
ea25feef99cc4b1f7f2d437b303abbb2

SHA-1:
a6e51302fd75a2703ca33f8c66db77497f333cdf

SHA-256:
0b4c91ea42c46db6a37288e11d7146276e2f20fbb04c9889ee76547c9286f09f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 3:40:04 PM UTC  (today)

File size:
2.1 MB (2,216,440 bytes)

Product version:
0,15,0323,1430

Copyright:
Copyright (C) Hongfeng Hengyu 2009 - 2015. All rights reserved.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\luz-da-escuridao1-lihapi.exe

Digital Signature
Signed by:

Authority:
Symantec Corporation

Valid from:
12/29/2014 10:00:00 PM

Valid to:
12/29/2016 9:59:59 PM

Subject:
CN=Fancy Guo Ltd., OU=Technical Department, O=Fancy Guo Ltd., L=Beijing, S=Beijing, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
144F450EF0887210EC0F865689B3532D

File PE Metadata
Compilation timestamp:
3/23/2015 3:31:01 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:xTSMIVMn3lu1RbGoHrX010KpFYxoLdXE6nUU13am/fn1TxK:tzIVMn3lmKoLE0KpFPdXGUBaQxK

Entry address:
0x2DF240

Entry point:
60, BE, 00, 70, 4D, 00, 8D, BE, 00, A0, F2, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 28, D5, 2D, 00, 57, 83, C3, 04, 53, 68, 3A, 82, 20, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 02, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A...
 
[+]

Code size:
2 MB (2,134,016 bytes)

The file luz-da-escuridao1-lihapi.exe has been seen being distributed by the following 50 URLs.

https://res-hg.gamesow.com/mclient/.../Luz-da-Escuridao1-gomere.exe

https://.../dl?t=dl&s=https://.../94.html?gw=1&op=gamesow&uf=0&uid=1556781&sid=94&time=1477091803&sign=2291e3974adfcfa7729a8581ee2cd186&instclient=1

http://.../dl?t=dl&s=http://.../56.html?gw=1&op=gamesow&uf=0&uid=1145078&sid=56&time=1449868388&sign=0b21a632ce61bd71b729a5e8fae5509a&instclient=1

http://.../dl?t=dl&s=http://.../78.html?gw=1&op=gamesow&uf=0&uid=675177&sid=78&time=1487124387&sign=ddb7c1b52ec23c22aa666918a778f358&instclient=1

http://.../dl?t=dl&s=http://.../66.html?gw=1&op=gamesow&uf=0&uid=1363662&sid=66&time=1455989992&sign=fb318d7d0dbdf9c791bdbc2d6a011c5f&instclient=1

http://.../dl?t=dl&s=http://.../99.html?gw=1&op=gamesow&uf=0&uid=1761711&sid=99&time=1486393929&sign=db786eee2b15d322de2fdeb63d87db6d&instclient=1

http://.../dl?t=dl&s=http://.../92.html?gw=1&op=gamesow&uf=0&uid=425039&sid=92&time=1479569602&sign=d74a66fc55bc872d36920ef4dc0ea61c&instclient=1

https://.../dl?t=dl&s=https://.../92.html?gw=1&op=gamesow&uf=0&uid=1830293&sid=92&time=1476278538&sign=90ed8af46c28edc6eca4fa3699478732&instclient=1

https://.../dl?t=dl&s=https://.../81.html?gw=1&op=gamesow&uf=0&uid=1350073&sid=81&time=1484055472&sign=0bdb455b9342f81423c694f38f87b676&instclient=1

http://.../dl?t=dl&s=http://.../15.html?gw=1&op=gamesow&uf=0&uid=311695&sid=15&time=1434231740&sign=6252e8b0ab27b1fdcedafa91330f7e2b&instclient=1

http://.../dl?t=dl&s=http://.../95.html?gw=1&op=gamesow&uf=0&uid=1881044&sid=95&time=1478365892&sign=2f87c5e8d2ea0f64a4e28c750404d3bd&instclient=1

http://.../dl?t=dl&s=http://.../98.html?gw=1&op=gamesow&uf=0&uid=1850472&sid=98&time=1482444274&sign=d5f7a9bbfdcd94865146b768b67d90f3&instclient=1

https://.../dl?t=dl&s=https://.../5.html?gw=1&op=gamesow&uf=0&uid=142346&sid=5&time=1476546364&sign=8ed7b6fe5170b3ccdd46442c2fbc2de5&instclient=1

http://.../dl?t=dl&s=http://.../53.html?gw=1&op=gamesow&uf=0&uid=477627&sid=53&time=1447707249&sign=7aa52254e6da8d7502d3667f7a1aaa7d&instclient=1

https://res-hg.gamesow.com/mclient/.../Luz-da-Escuridao1-citoxa.exe

https://.../dl?t=dl&s=https://.../100.html?gw=1&op=gamesow&uf=0&uid=2016107&sid=100&time=1487364785&sign=e60849494adf46d6974e5a32add08c92&instclient=1

https://.../dl?t=dl&s=https://.../90.html?gw=1&op=gamesow&uf=0&uid=1781371&sid=90&time=1473011508&sign=7d8b4f9902377360e8fc905be3ab9fa8&instclient=1

http://.../dl?t=dl&s=http://.../20.html?gw=1&op=gamesow&uf=0&uid=396848&sid=20&time=1435522581&sign=72590c8e935e574c3c5be8d1039b979e&instclient=1

http://.../dl?t=dl&s=http://.../98.html?gw=1&op=gamesow&uf=0&uid=1933239&sid=98&time=1481962638&sign=a92cf5569a0c4b47bbef5e24e72337e0&instclient=1

http://.../dl?t=dl&s=http://.../80.html?gw=1&op=gamesow&uf=0&uid=1594631&sid=80&time=1466462822&sign=292ecd58afb45f9fa6cf3acec7796a69&instclient=1

https://.../dl?t=dl&s=https://.../84.html?gw=1&op=gamesow&uf=0&uid=1549157&sid=84&time=1468672851&sign=05c9f1fc9d9c865c662bc0159956458d&instclient=1

http://.../dl?t=dl&s=http://.../15.html?gw=1&op=gamesow&uf=0&uid=1953675&sid=15&time=1482101800&sign=921b5efaf71781a6cddf0d4b32ffb212&instclient=1

https://.../dl?t=dl&s=https://.../98.html?gw=1&op=gamesow&uf=0&uid=1929724&sid=98&time=1481384755&sign=3631d9cf25f7e84e53b7f18d156c76af&instclient=1

http://.../dl?t=dl&s=http://.../3.html?gw=1&op=gamesow&uf=0&uid=120802&sid=3&time=1476026216&sign=63edc765e3ec5b225a1d94d7da0a8d8e&instclient=1

http://.../dl?t=dl&s=http://.../1.html?gw=1&op=gamesow&uf=0&uid=1903052&sid=1&time=1480521101&sign=9a0c5017ec4941106c94262119b18176&instclient=1

http://.../dl?t=dl&s=http://.../98.html?gw=1&op=gamesow&uf=0&uid=119820&sid=98&time=1483183634&sign=8f5899ac35ae5f90262f1bf80d109ea7&instclient=1

https://.../dl?t=dl&s=https://.../33.html?gw=1&op=gamesow&uf=0&uid=112604&sid=33&time=1477086289&sign=604aa971fbb636469d3a9fa4f3382ffb&instclient=1

https://.../dl?t=dl&s=https://.../98.html?gw=1&op=gamesow&uf=0&uid=1929944&sid=98&time=1481387941&sign=0a598596fa71c3d0a3f856378757dac4&instclient=1

https://res-hg.gamesow.com/mclient/.../Luz-da-Escuridao1-jiqoda.exe

http://.../dl?t=dl&s=http://.../12.html?gw=1&op=gamesow&uf=0&uid=493717&sid=12&time=1481819071&sign=b61ce036a51154f60c61807dec25514a&instclient=1

Latest 30 of 841 download URLs

Scan luz-da-escuridao1-lihapi.exe - Powered by Reason Core Security