overwolfinstaller.exe

Overwolf Installer

Overwolf Ltd

Publisher:
Overwolf  (signed by Overwolf Ltd)

Product:
Overwolf Installer

Version:
1.39.0.0

MD5:
37e40dd5bc2c40bc2881bdb7f9c07920

SHA-1:
be2c253a86bb491fcca7c44ec809987528b738e4

SHA-256:
6db48b0506aaf1f623f45a85ff5e55d621ae112db3fc6efb6f5b7c0a11028c85

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/28/2024 7:38:26 AM UTC  (today)

File size:
1.5 MB (1,600,240 bytes)

Product version:
1.39.0.0

Copyright:
Copyright © Overwolf 2014

Original file name:
OWInstaller.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\overwolfinstaller.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
11/22/2014 7:00:00 PM

Valid to:
2/21/2017 6:59:59 PM

Subject:
CN=Overwolf Ltd, O=Overwolf Ltd, L=Tel-Aviv, S=Israel, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1249C91E5611F73BD94274B6C30DDE54

File PE Metadata
Compilation timestamp:
9/23/2014 9:32:22 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:Gi1QzP6Zw4lAjNj71hFs8reVfk8oa+LabzwOrg0V6T3:R1+P6Ojl1hFs8reVfJoa+LaXwQYr

Entry address:
0x180126

Entry point:
FF, 25, 34, 01, 58, 00, 00, 00, 00, 00, 00, 00, 00, 00, 08, 01, 18, 00, 00, 00, 00, 00, 00, 00, 00, 00, 66, 76, 21, 54, 00, 00, 00, 00, 02, 00, 00, 00, 89, 00, 00, 00, 58, 01, 18, 00, 58, E3, 17, 00, 52, 53, 44, 53, 09, 3A, 1C, 7C, 86, 54, 69, 42, 9C, D0, 82, 9E, CB, 40, 3B, 35, 01, 00, 00, 00, 44, 3A, 5C, 53, 65, 72, 67, 61, 79, 5C, 4F, 76, 65, 72, 77, 6F, 6C, 66, 53, 6F, 75, 72, 63, 65, 5C, 4F, 76, 65, 72, 77, 6F, 6C, 66, 5C, 49, 6E, 44, 65, 76, 5C, 4D, 61, 69, 6E, 44, 65, 76, 5C, 53, 6F, 75, 72, 63, 65...
 
[+]

Entropy:
6.0435

Code size:
1.5 MB (1,565,184 bytes)

The file overwolfinstaller.exe has been seen being distributed by the following 2 URLs.

Scan overwolfinstaller.exe - Powered by Reason Core Security