» mafia2.exe
Overview
Analysis
File Details
Programs (5)
Downloads (7)

mafia2.exe

Mafia II

Valve Corporation

File name:

mafia2.exe

Publisher:

2K Czech (signed by Valve Corporation)

Product:

Mafia II

Description:

Mafia II Application

Version:

1. 0. 0. 1

MD5:

7555bc26f068ce0cbd88f97140695ab1

SHA-1:

da0ef432f56e2230c367cf1557e120b2d3d4a2a3

SHA-256:

3ad95cec9d4658a71d7d81248a07d226b4ac6cc881df501392398f3109d72d61

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

11/23/2024 6:02:56 PM UTC (today)

Scan engine

Detection

Engine version

Norman

Heuristic_Anomaly.A

11.20140203

File size:

23.1 MB (24,261,920 bytes)

Product version:

1. 0. 0. 1

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\Program Files\2k games\mafia ii\pc\mafia2.exe

Digital Signature

Signed by:

Valve Corporation

Authority:

VeriSign, Inc.

Valid from:

4/20/2009 2:00:00 AM

Valid to:

4/20/2012 1:59:59 AM

Subject:

CN=Valve Corporation, OU=Steam, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Valve Corporation, L=Bellevue, S=Washington, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

6C409E48C32B0D1100F80B9D29BC1FB9

File PE Metadata

Compilation timestamp:

8/19/2010 6:18:37 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

393216:7CDqmLHeRPZVaF9QuI2zmI7XnGRdYdEfgZd9mDqQUKE1+jvfsdWRmPJY9qqcPXPt:7CFHeRRVaF9QutbGRdYZd9mwPO8qcPXF

Entry address:

0xB0E0D2

Entry point:

4D, 5A, 90, 00, 03, 00, 00, 00, 04, 00, 00, 00, FF, FF, 00, 00, B8, 00, 00, 00, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 40, 01, 00, 00, 0E, 1F, BA, 0E, 00, B4, 09, CD, 21, B8, 01, 4C, CD, 21, 54, 68, 69, 73, 20, 70, 72, 6F, 67, 72, 61, 6D, 20, 63, 61, 6E, 6E, 6F, 74, 20, 62, 65, 20, 72, 75, 6E, 20, 69, 6E, 20, 44, 4F, 53, 20, 6D, 6F, 64, 65, 2E, 0D, 0D, 0A, 24, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

6.5356

Code size:

20.8 MB (21,807,104 bytes)

The file mafia2.exe has been discovered within the following programs.

Borderlands by 2K Games

Borderlands is an action role-playing first-person shooter video game, that was developed by Gearbox Software. Borderlands includes character-building elements found in role-playing games, leading Gearbox to call the game a "role-playing shooter".

www.borderlandsthegame.com

5% remove it

Mafia II DLC Jimmy's Vendetta by 2K Games

Publisher's description - “Jimmy's Vendetta will take players into an alternate perspective of the mob through the eyes of Jimmy, a mercenary. Jimmy is the guy the other guys call when they need to finish the job.”

www.2kgames.com

1% remove it

Mafia II DLC Joe's Adventures by 2K Games

Publisher's description - “Play as Joe in this new add-on content. In this extension to the original story of Mafia II, Joe uncovers who had Vito sent to prison and what really went down with the Clemente family.”

6% remove it

Need for Speed™ Undercover by Electronic Arts

Need for Speed: Undercover is the 12th installment of the popular racing video game series Need for Speed, developed by EA Black Box and published by Electronic Arts (EA). Undercover features a new open world map.

www.ea.com

3% remove it

Pro Evolution Soccer 2014 by Konami

Publisher's description - “Pro Evolution Soccer 2014 title will mark a new beginning for the popular series, with an all-new engine allowing for the most comprehensive advance for the Pro Evolution Soccer series since its inception.”

www.konami.com

7% remove it

The file mafia2.exe has been seen being distributed by the following 7 URLs.

http://s8301.chomikuj.pl/File.aspx?e=qSLsXSCKiCJ5tEl-C16LM5gAIeh9-ygv2hFJoOHhyQZWOm6_Kho16-d1JS_qRNi-JlExt7TiIv_LKmYEm_OAyYmCwNqcmR0me_wV6TEqx2-0D1qeLg1PjyuM8Tu9xZ7dv2tjW_jfRwW8iBsf0G5oFg&pv=2

http://dc382.4shared.com/download/.../Mafia2.exe

http://s10373.chomikuj.pl/File.aspx?e=qSLsXSCKiCJ5tEl-C16LM7PPz-dGwKGvQ2hwMT3UGqv4WJS56AqWNltMu_J00jMppwYudGIw_rxswokxd2JQL4SRFGS7xklzJkdyG_QRRphi2AWmenpBKpZfV8071XD0M_738_DK8CHMbc4Zb5T8ww&pv=2

http://s10373.chomikuj.pl/File.aspx?e=qSLsXSCKiCJ5tEl-C16LM_p_vkk3F2GvMjynxK1SQ5GJHb8bfQf5PrrGRpXA5XoYHW6dYgtN9Jmv79cjyWsBDJw9UUbqcGUuF1pJYO2IPUl3TLFLdS9KiZxL_cb1lkbeAFoAUBO0-ehmxm7e_pGymg&pv=2

http://dc741.4shared.com/download/.../Mafia2.exe

temp:mafia2.exe

http://s10373.chomikuj.pl/File.aspx?e=qSLsXSCKiCJ5tEl-C16LM1GZuY1kWHLm2R0Tkl_isEuqpvJdwFsRCFogmGEkxqD-3ANV3x5mU0dr4TFBLZPzpcR4mxIPBObNaduc5cU0mcWc_Hy5bk-C2a5Jv6Ih3RRj9hjmT24TQor_Ft_YcxZIDw&pv=2

Scan mafia2.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.