» metal_gear_solid_v_the_phantom_pain_repack_by_s-108-torrent.exe
Overview
Analysis
File Details

metal_gear_solid_v_the_phantom_pain_repack_by_s-108-torrent.exe

INTIS

The application metal_gear_solid_v_the_phantom_pain_repack_by_s-108-torrent.exe, “Win Express Installer ” by INTIS has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software.

File name:

Publisher:

держка. Получить поддержку. KX-FADK511A - оптический блок (барабан) Panasonic для лазерных МФУ Panasonic. (signed by INTIS)

Product:

держка. Получить поддержку. KX-FADK511A - оптический блок (барабан) Panasonic для лазерных МФУ Panasonic.

Description:

Win Express Installer

Version:

31.2.0

MD5:

3bdd5b516b8b7ffa2c67323d13942ce5

SHA-1:

fcc1eed1eeb2d41c1eb899188a3ae50d3da7b280

SHA-256:

c47446da93ec4895dec50ed10841329a0c40b9201883a42b67e81eeb3f097140

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

12/26/2024 11:02:39 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.FileTour (M)

17.3.8.23

File size:

2.3 MB (2,425,800 bytes)

Product version:

31.2.0

держка. Получить поддержку. KX-FADK511A - оптический блок (барабан) Panasonic для лазерных МФУ Panasonic.

Trademarks:

держка. Получить поддержку. KX-FADK511A - оптический блок (барабан) Panasonic для лазерных МФУ Panasonic.

Original file name:

держка. Получить поддержку. KX-FADK511A - оптический блок (барабан) Panasonic для лазерных МФУ Panas

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\metal_gear_solid_v_the_phantom_pain_repack_by_s-108-torrent.exe

Digital Signature

Signed by:

INTIS

Authority:

COMODO CA Limited

Valid from:

4/16/2016 3:00:00 AM

Valid to:

4/17/2017 2:59:59 AM

Subject:

CN=INTIS, O=INTIS, STREET="Prospekt 40-letija Pobedy, 69, 1, 8", L=Rostov-Na-Donu, S=RU, PostalCode=344072, C=RU

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00E0D42565A341BEBE1BAFBF6CA79F6420

File PE Metadata

Compilation timestamp:

5/19/1992 9:01:02 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

Entry address:

0x64A6F4

Entry point:

83, C4, FC, C7, 04, 24, 00, 90, A4, 00, 58, FF, E0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Code size:

2 MB (2,079,744 bytes)

Remove metal_gear_solid_v_the_phantom_pain_repack_by_s-108-torrent.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.