NyxLauncher.exe

Softnyx Game Launcher

Softnyx Co., Ltd.

This file is installed with multiple programs including LoveRitmoLS and Rakion Latin.
Publisher:
Softnyx  (signed by Softnyx Co., Ltd.)

Product:
Softnyx Game Launcher

Version:
1.0.0.1

MD5:
e4fffc769154639fe6652a93e9be551e

SHA-1:
a5ab9aca1be8af59be8ec8ecfebac0ba25e77131

SHA-256:
4c53301d0be52575197e560d5a97ca9de36907d9c673bd2361e9f017e6619296

Scanner detections:
10 / 68

Status:
Clean  (10 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/27/2024 3:54:25 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Win32/Hidrag
2015.09.17

avast!
Win32:Gardih
2014.9-160201

AVG
Win32/Hidrag.A
2017.0.2846

Bkav FE
W32.SplitFileLTB.PE
1.3.0.7237

Emsisoft Anti-Malware
Gen:Trojan.Heur.az1a40m3k2dG
8.16.02.01.11

K7 AntiVirus
Trojan
13.210.17247

Panda Antivirus
Generic Malware
16.02.01.11

Qihoo 360 Security
Win32/Trojan.87e
1.0.0.1015

Rising Antivirus
PE:Trojan.DL.Adload!1.66A0[F1]
23.00.65.16130

Trend Micro House Call
Suspicious_GEN.F47V0717
7.2.32

File size:
1.1 MB (1,178,184 bytes)

Product version:
1.0.0.1

Copyright:
(c) Softnyx. All rights reserved.

Original file name:
NyxLauncher.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Authority:
Thawte, Inc.

Valid from:
3/27/2013 7:00:00 PM

Valid to:
5/27/2015 6:59:59 PM

Subject:
CN="Softnyx Co., Ltd.", OU=Server Development Team, O="Softnyx Co., Ltd.", L=Geumcheon-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
28B38B9B435990075853CF5A935BA17B

File PE Metadata
Compilation timestamp:
10/27/2013 7:31:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
24576:eGijm5D4/2KQ47IkwQAYRrFGJwuYehO5+6uTX:Tgg1QAYRrbWlfT

Entry address:
0x7A3E4

Entry point:
6A, 60, 68, A8, CB, 4C, 00, E8, 28, 20, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, 94, D0, FF, FF, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, 90, A3, 4B, 00, 8B, 4E, 10, 89, 0D, 20, 6F, 4E, 00, 8B, 46, 04, A3, 2C, 6F, 4E, 00, 8B, 56, 08, 89, 15, 30, 6F, 4E, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, 24, 6F, 4E, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, 24, 6F, 4E, 00, C1, E0, 08, 03, C2, A3, 28, 6F, 4E, 00, 33, F6, 56, 8B, 3D, 40, A3, 4B, 00, FF, D7, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03...
 
[+]

Entropy:
6.4311

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
740 KB (757,760 bytes)

The file NyxLauncher.exe has been discovered within the following programs.

GunboundIS  by Softnyx Co., Ltd.
www.softnyx.com
About 1% of users remove it
GunboundLS  by Softnyx Co., Ltd.
About 2% of users remove it
GunboundPS  by Softnyx Co., Ltd.
www.softnyxbrasil.com
About 9% of users remove it
LoveRitmoLS  by Softnyx Co., Ltd.
loveritmo.softnyx.com
About 8% of users remove it
NyxLauncherIS  by Softnyx Co., Ltd.
www.softnyx.net
About 5% of users remove it
Rakion International  by Softnyx Co., Ltd.
About 6% of users remove it
Rakion Latin  by Softnyx Co., Ltd.
About 3% of users remove it
WolfTeam International  by Softnyx Co., Ltd.
About 4% of users remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to static.85-10-198-25.clients.your-server.de  (85.10.198.25:80)

TCP (HTTP):
Connects to static.180.158.9.176.clients.your-server.de  (176.9.158.180:80)

TCP (HTTP):
Connects to i0-h0-s5.p0-gig.cdngp.net  (174.35.87.70:80)

TCP (HTTP):
Connects to i0-h0-s2116.p9-jfk.cdngp.net  (174.35.76.12:80)

Scan NyxLauncher.exe - Powered by Reason Core Security