home

ModLauncher.exe

Torchlight II Mod Launcher

Runic Games, Inc.

The executable ModLauncher.exe has been detected as malware by 8 anti-virus scanners.
Publisher:
Runic Games, Inc.  (signed and verified)

Product:
Torchlight II Mod Launcher

Version:
1.0.0.1

MD5:
70c9d5f6816812d6ca53467da8468cfc

SHA-1:
022b377d19d1f334e3dff80a2f8bb9f3cb5a9985

SHA-256:
b62073d27616cadc1c1968f677b22496a5f8519c7a8ec6eca59c0f1284a54fa2

Scanner detections:
8 / 68

Status:
Malware

Analysis date:
11/15/2024 2:17:40 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Pioneer-C
160518-2

AVG
Win32/Floxif.A
2015.0.4591

Emsisoft Anti-Malware
Win32.Floxif
16.07.14

ESET NOD32
Win32/Floxif.H virus
8.0.319.0

F-Prot
W32/Floxif.B
4.6.5.141

Kaspersky
Virus.Win32.Pioneer
15.0.0.562

Microsoft Security Essentials
Threat.Undefined
1.225.1417.0

Norman
Win32.Floxif.A
28.05.2016 15:32:18

File size:
1.8 MB (1,854,111 bytes)

Product version:
1.0.0.1

Copyright:
(c) 2013 Runic Games, Inc. All rights reserved.

Original file name:
ModLauncher.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Runic Games, Inc.

Authority:
Thawte, Inc.

Valid from:
7/28/2014 5:00:00 PM

Valid to:
9/13/2016 4:59:59 PM

Subject:
CN="Runic Games, Inc.", OU=Secure Application Development, O="Runic Games, Inc.", L=Seattle, S=Washington, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
22D50B76C13AD063B28FDD8BCC17335C

File PE Metadata
Compilation timestamp:
5/13/2016 7:30:49 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:lJBiV9z3zVk25jUyx2kl328spPk9HWnrr14qmzboEprEH7a:zK9z3zVk2txb08wPk9HWxUJ

Entry address:
0x22E9F

Entry point:
E9, 30, 80, 01, 00, E9, 79, FE, FF, FF, 3B, 0D, 70, EE, 44, 00, 75, 02, F3, C3, E9, 10, 51, 00, 00, 8B, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 14, 75, 20, E8, 1E, 1D, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 26, 0C, 00, 00, 83, C4, 14, 83, C8, FF, E9, C5, 00, 00, 00, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 3B, FB, 74, 24, 3B, F3, 75, 20, E8, EE, 1C, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, F6, 0B, 00, 00, 83, C4, 14, 83, C8, FF, E9, 93, 00, 00, 00, C7, 45, EC, 42, 00, 00, 00...
 
[+]

Entropy:
7.4022

Packer / compiler:
Xtreme-Protector v1.05

Code size:
247.5 KB (253,440 bytes)

Remove ModLauncher.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.