pcmnew.exe

Gkpl

This is a self-extracting archive and installer. The file has been seen being downloaded from gamekingparlour.com.
Publisher:
Gkpl

Description:
Pcm 18.00 Installation

Version:
18.00

MD5:
0d0fbd37742e78480f8131b0cbd5baa4

SHA-1:
d36125fc4029af518c54daa9f14753f89c92bd97

SHA-256:
9d62044e95b10b75646dc5b23d024408518c1e16177e87e7acefffca45c216be

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 11:57:31 PM UTC  (a few moments ago)

File size:
50.9 MB (53,390,705 bytes)

Copyright:
Gkpl

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\low\content.ie5\{random}\pcmnew.exe

File PE Metadata
Compilation timestamp:
6/19/1992 3:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
1572864:CBWYkroZ3pPh0798LKozVYr+7+A/kDcNTreWYlB:yesXPh0B8LdVO+KA/xNTreWY/

Entry address:
0x19B64

Entry point:
55, 8B, EC, 83, C4, F0, B8, 9C, 9A, 41, 00, E8, B8, AB, FE, FF, B8, C4, 9B, 41, 00, E8, 5A, DC, FE, FF, 8B, 15, C8, A6, 41, 00, 89, 02, 8B, 15, C8, A6, 41, 00, 8B, 12, A1, CC, A6, 41, 00, E8, 48, D5, FF, FF, 8B, 15, C8, A6, 41, 00, 8B, 12, A1, 6C, A6, 41, 00, E8, 02, 71, FF, FF, A1, C8, A6, 41, 00, E8, 14, 18, FF, FF, E8, D7, 99, FE, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9993

Developed / compiled with:
Microsoft Visual C++

Code size:
99 KB (101,376 bytes)

The file pcmnew.exe has been seen being distributed by the following URL.

Scan pcmnew.exe - Powered by Reason Core Security