mirrors-edge-2009-pc-repack-ot-fenixx-1747-torrent.exe

Inar

The application mirrors-edge-2009-pc-repack-ot-fenixx-1747-torrent.exe by Inar has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Inar  (signed and verified)

MD5:
3c6798b1698d70ac6ebd8ab0b6bbc3a2

SHA-1:
5cc71ad87ca14939fb2b51a55aa7e8cd2296e166

SHA-256:
4e28ff9005bc691f4aa5806d820fb37055b1bc77559b205971fbc232fa8ea854

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 5:11:12 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.FileTour (M)
17.3.12.0

File size:
2 MB (2,127,840 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\mirrors-edge-2009-pc-repack-ot-fenixx-1747-torrent.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
3/7/2016 3:00:00 AM

Valid to:
3/8/2017 2:59:59 AM

Subject:
CN=Inar, O=Inar, POBox=125430, STREET="Mitinskaya 28, 1", L=Moscow, S=Moscow, PostalCode=125430, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00AB4370BDD00A267992E2C4CE2CA93FB9

File PE Metadata
Compilation timestamp:
5/29/2010 3:05:57 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x602B0F

Entry point:
60, B9, 00, 12, 00, 00, 03, D7, 49, 0F, 85, F7, FF, FF, FF, B9, 05, 00, 00, 00, B8, 2C, 02, 00, 00, 8B, 15, CC, D0, A1, 00, 52, 0F, B6, 54, 11, FF, 2B, C2, 49, 5A, 0F, 85, F0, FF, FF, FF, 09, C0, 0F, 85, 01, 00, 00, 00, E8, 61, 52, 57, 33, D2, 03, 15, 10, 70, 82, 00, 0F, B6, 12, 80, EA, B0, 83, EA, 04, 83, EA, 04, FF, 75, FC, 5A, 0F, 85, 15, 00, 00, 00, B9, 00, F0, 01, 00, 33, 54, 24, 04, E0, FA, 83, EC, 0C, FF, 15, 18, 70, 82, 00, 33, 5F, 5A, 8B, C0, 68, BF, 91, 98, 00, C3, 00, C3, 00, 00, 00, 00, 00, 00...
 
[+]

Code size:
1.9 MB (2,018,304 bytes)