plantsvszombies.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.grabupdateshare.com and multiple other hosts.
MD5:
68ca461e30a9425742aa761cde0202ec

SHA-1:
4e3b416d046dab557b0adc7e2dcc9b13835d4337

SHA-256:
fcf66a3c16842152352c398fc5c41ec24bc99bd580dd814e6ef496ca40e708be

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 9:53:25 AM UTC  (today)

File size:
176 Bytes

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\plantsvszombies.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
3:IskNPsWgHM0qW2ra6XEQzbH9QVQUVWRFADhneyu33GXmGSGmvZKna8oA:wPdLk2O8/zbHsBVWRFmP8AClv0n3oA

Entry point:
3C, 48, 54, 4D, 4C, 3E, 3C, 48, 45, 41, 44, 3E, 3C, 54, 49, 54, 4C, 45, 3E, 45, 72, 72, 6F, 72, 3C, 2F, 54, 49, 54, 4C, 45, 3E, 3C, 2F, 48, 45, 41, 44, 3E, 3C, 42, 4F, 44, 59, 3E, 0A, 41, 6E, 20, 65, 72, 72, 6F, 72, 20, 6F, 63, 63, 75, 72, 72, 65, 64, 20, 77, 68, 69, 6C, 65, 20, 70, 72, 6F, 63, 65, 73, 73, 69, 6E, 67, 20, 79, 6F, 75, 72, 20, 72, 65, 71, 75, 65, 73, 74, 2E, 3C, 70, 3E, 0A, 52, 65, 66, 65, 72, 65, 6E, 63, 65, 26, 23, 33, 32, 3B, 26, 23, 33, 35, 3B, 35, 30, 26, 23, 34, 36, 3B, 34, 64, 66, 31...
 
[+]

The file plantsvszombies.exe has been seen being distributed by the following 19 URLs.

http://www.grabupdateshare.com/MmnN1ZyKKRmKAyvQXRPU1YQdZ2I B4 J8wm iDRQ0ioXQVu0u9EM1PWlLtYsX2a1F3NBchs3DptrYVlEMccCIbnUglFH 7ghP7YnznhEXG8Zt8AX5RlBlEysrD_KhuHXupmkrRFIxMBHu9IQsGF3QhyRvrRb vwbLd5SIwrL5X8mWPkeROBCKab5iSzi2 p0JSF9rWqykGa6_8rMNEe2hAXOBx1_RJ7mXntyxYv37XM6J1YN6D8k6zCGGMqABJ5FkpBqrBrTmO0mCMR0 Bq8eaY4YRJFknKCsI0DL9QhFfUlUopgrj31cegmdi xme4a9z_21EE6zlcwRZ45iLCdRHpA8QrvyzLLrGaH1BOFQVB64Ut1VZ1KQpIGB nGgqHJxWlBkJvVxSk5HTt83usmplZNzN35yBwoklTmG2uSBAiFqcDb70JLfmLp9ZGbb0yUMT1Pm21OlVgw039E26gc0pv7EkS3Zdupq6nX0ZPQkZWtzo1lLFFi1em_SQBCHE UuXSZtWwpl8jEpVk tgszYSFJUghpHsv4jxzFQcFgPIcV2Mo98f6aVK4WMQpfNQOHkAwko2dhMI4Fjx1Uz0vZxD2It0R4Y79aqX99womTfEoKqD7 KVuWHTRLYTZduljQ2DOAhwnm8HiU58ekOWkKGlcItl_0WNdiVP78XNsYO3t5MSYdDUBylYQVTQgFd0fT1gpMk9lcBBV RGvRIeyO5S6N6Pc4ew==-GzsAAMTyFtv_jKdUWbS_8MyEx8BEDhxaIBc9kNXV5oG8MUaj0fePzetOoQqOuXBIIlxx PO2Vzc44QM=

http://www.grabupdateshare.com/C4kHmanucGgbTIRtR7s4LS sp TLLcKBzyu8jUxNsMUISWaWdKg 6dd 7vCJz1fxZgNfsn4fbhahS8VhUPqAO1QCEAXElMamkwIscanM026H9FRs6Qp23zVwOK2F_Mvrtrw DM0xJubg5X3ekir83J30S5F osPa9qu qnF25oxK1pA9ntM3Ax0RN627hwQYHWgNvgV525ZSmXrOW725DezdxIrxH1k4ymkb70qVMqfekE UeBstXcuN 6b5SpATCrqxr7uV9PWHpQb0YxNyU_z2Ur2I6vexjTR6bIgWYW6m5ohx3 jSJLIaV7ClB4_ASQtgzb4UjqYcVrsuyGO_SGgtqo6YSoHPA6XE9Wm06xwjTw1RtshSPoNlmRUkoNTnH34rm8xdG6Vx86 eFUwIBRTdiDLh 9aTfI9MOUn7LiHqYphcdi5ch0i9mXL695G75 pzddZY4rcLOtwyyMS8Hf39862O9o67oa5foNp5fZjJN9gLeps0Cp0Da2_ulpQd3B1D7sQ1 QvZJZW2sR4kbU9bxpXGipMbcHypBFpqc0Yz7tZDg2Lckb_BN0kaP1ZSW0m5XRCf9ZxthZwpPNngd6PFdDQ3npR6WaLhTgHF40OCBSYoHz7po293xVqaNLxg4xkDoT2tj5IoE5vAanw3ub6AlVYEClSPRFGizK7XU6cwvUFSeWhkZqu2ga3VzWzjRfeUXPNWZ BkiW_km25kOb_KmOzALhhmzFR 6VZckWh3RRFFwfs=-GzsAAMTyFtv_jKdUWbS_8MyEx8BEDhxaIBc9kNXV5oG8MUaj0fePzetOoQqOuXBIIlxx PO2Vzc44QM=-e

http://www.grabupdateshare.com/13 Hf6hAhZtKT3shs0EHUIroeUqeF36cjgKUeonXEb0zmTN0QOnI_LBQFxcl9BjfMAYD6aIc3wWs6Gez08TH6Ib5xbR_dmfm1YGOc2zceu31R0FGATEj_hlOH8u1HQUD2moqNHSUF9KW UZFzKo3jAdtX9GBmq52cWUUpK Fo6zHj LdjPVTpHU3g0Mor0hC5iOfRs_P0MZz2eZNV0bYQY8tXlhPkO5yn_ulyRPAXd6NM0kM OXmE2lQb8tvB KLtMuurE1Sga_cS2ix3K6G8JQ PTFjuIaCk yznupkMw8_N63FXHpIMEXrA4Swj_9SfkB7QQmRpoRIcexSt0Rf2P39IQOzH0U25 MKEy_VWl0klk86SRdWc94P0OssXpCVWxenv572NfqFoK38wQfyspDdZjzuHBdVJe SVPFNiO2EuMkccTRNgl Vj8vrvtRIFXxwEBcWZwR63HRf_X9QOYN42alPb4X22eK0KcbUEfv1zGxmBlEbkfApYlfK6em8w4xz1mS55ZhxL0OrNSsTAUN9aa7nFXySuwUNOkcE0SjmYaGUSEAUM Qis29VpubXapBCkX2WzmBcIau044dcuXoN0QQEHeZSQWwpMdL8d5dn0G0gHobjZULTMuQdv6DMh GIMGNc0bBNzEucubkXSiJt4T E9_NU_RwxcRXgli0EyiiddX4mqYgbdwYlWIJFu97F9yXM4dMrnovrtBZ_0HhZalGLy2M8goco2T0pyVohlr6EZjg=-GzsAAMTyFtv_jKdUWbS_8MyEx8BEDhxaIBc9kNXV5oG8MUaj0fePzetOoQqOuXBIIlxx PO2Vzc44QM=-e

http://www.grabupdateshare.com/TH2VNjxkVy5ErxEJldjzwQxxVg9nGd2g5NE3nN DjeesHqj9wskPHI4YKkY3qNsRObnMsPXMLV1fQ28bRdbDkE0XNzW3P8cbHH4z8T2DgzFzAg1K9oZGa6AlFZpHCo_5CXE_xidAuw4bPdbIG0JOgt1YwU6VIF1_nzuRHqstYkeu8PXOWAN6gHnKQK2SKFRK9pVkqlNv1kZolhLoGAsYMBjhB3YnpPDy6BW02W40_uHckgXI3QwztEfRZVibH6olO06wBXCANXoysB5FLSO8lCRLE6byZ2 Fp1b 6B2gGPsQYfabG0PNM8O85srqF6c842jLuoxe1N7H_3X3mMyLpLNaX_Ic4J_puqTc7JBng6XcCdGnx1rniNsrTo 5eqffvMBHGZaPZwyclL3PvkKJXzIC48x1g6IMmcFhDnKvfrspbqKVpN11Q AK6MGif7K_xbYgeQpp26oVPrvhLHwyHeoTAuURn06toAnx7glm6MvdYSrZjEjomWC4_FoK3q_4MT0ALT_yxfMptKsTeQ15dzT1LhbZp1xZyTnYMpaikPfjNNWl8WmrbEsMVUMeffYEGpKX8Z0KXaDjUuPWF1edt2zQxLClOEhdm5Pr4mRGBsKasP9 5bGrYEndqHl2dhwtJ8hHDNf 9Fc2_HUxjnyb29It_jXrXmpjnzFWQrH2D2Rzs3ZLknC9XrtfRBo6Y9G3SuTmMrpi-GzsAAMTyFtv_jKdUWbS_8MyEx8BEDhxaIBc9kNXV5oG8MUaj0fePzetOoQqOuXBIIlxx PO2Vzc44QM=-e

http://www.grabupdateshare.com/a6oHJCUQjMMjxZdr8b8XbsuUeAT0nyBdaAr8UP_eH8Mw5G7_7Um0U1igvhqoSa9SxIHYY1JXL0fVzFLAZLXegchtqpNVbnSGcGuEoaj60OWD_I0CIs1QU50kqKTxIoN_hON4u5ahuROiiYPQvAH yZSHVqJuD3hr4rv35TEoHgyH5fgKqS6E843QGgF1V5b_xyXPleUnaKiOuRF mMyvUoKhkjJXQFB2vXhKgGzW4pkYysqNkTZk9O1eCw7HmrdZOAhbDUYLdk9hUDvB7W2HfQPDMZ__LgA OtL8HH B0E2cW4vy48HPvaHyst_MHRBcST5H8Sgj1zKjVI5MyFnd5y6FCBFxTueWJRTunQA94wLmDCCG iPsoeo6R5J0gWtJsG7z0NUCARiEO5hbuKSgXX30uKro2DX1_HFnA_ScK116J_eMrBrRrefwExWxlRlCb4amRI_GyVGs3aJJAxTCkOPTvo9lVaHLt7ZNsceyy0bCwqmA2CnC59y32kNcVTlady3JQs5sDB19pzlCQKU61V7CKM7Swix0fM4CAfM9GBIcFRopjMkQUeoCeCYK9CYNNAZzcgBJMCL5TTRuh_m4qeKjp50h06zwg2HC6VW_CibgWcjVdNzAi2WSeu0wpCSLf1gjLsfMdy2QC6fn_mdYhGQfDgVlCoUOFCS6XEvBmfUAoU2yTkg4CR74Y9jpjB7zppmoukHhsNbUkC8SMvHBO1_5d3C3ovt1MI24efONy_QQbwW3yCo=-GzsAAMTyFtv_jKdUWbS_8MyEx8BEDhxaIBc9kNXV5oG8MUaj0fePzetOoQqOuXBIIlxx PO2Vzc44QM=-e

http://www.grabupdateshare.com/Ar3UsCYoVLCel56FCNXDDdIzZ0dnVghAODA58v3Z_S0IdO88iXYbmVCrpT3JtCJoSIhFwAbdz2tAEZeOmf3g0QbzSCBZCLTjYb03VZAqJZFn2spkm9jOzGh0PG2JJVhfVEJtu7z _37u9ij3J8fcukvhGwqX4ySafgtX DDsrQN8ojPYe2_o_0TUyLekMurPAjinpHn3yU982DvmfAaTEcwvBBz0RcC7r7D28x748QRS_yeFLtD6XGCDhjP6bLJtYcV6cNc3unlfWr74ckpKCubH55ueZ6vcxEZFz5iJvUame1hQ4KoRIcCdccMOJ8FhIzG5pl9zJFP vHwmy6_BhpZ5NcwPwtGItnrv9oAeBDcpB2seY5VlzzCL0 xKyyioeBSNfLMAHwiDRHdqNF7fbGiC4sSJRM0Qn_b7jTn5w5ByoTSLGGyemNNCAugJ0hWTJuwdudty wcFHo0xUH31bT49nDg33If_QG DiySXvJFEx7XlXFODaZSyzFcpekJHbzyCPj pnFKUDq4uN4iPEbqDyM6JCiAJh05NtBCW8Xr3uTuoze8w5j HxKueUaEb8 YpNKZyk2qno7liHE5TYf6HX9cfpMYCkiBVS87i0k6EtA52ilYH_ha7XMxi o_aaZLU5i9sksbAdg0vnO6KtHfyyGH4DFEpPsUZz26QPr7VXs2koaJYTwmB2DzTRjvg jgjP8F Mtfz_ BL3VPXc2DbVeCSWQ==-GzsAAMTyFtv_jKdUWbS_8MyEx8BEDhxaIBc9kNXV5oG8MUaj0fePzetOoQqOuXBIIlxx PO2Vzc44QM=

http://www.grabupdateshare.com/of72tJ5iNjVa08dYRIj3uxysRcnUf92tnWDf56Fy8uAwEvcDEdQVMV3GeNUpDzjixPLSPCjye0fM T MQwAwjYxMay8nNPeiS8CoN_m1sxvMn2iTKgsHKNf6ZggV1AWQYAZSUgu8GPjErjxQQ71RoirGq73JvgQ0umDh6bRf_gLUtddliJqo1gZ5CfXHyZygiHflVPTIj jgCEiwwUOnbIMysa0SdwE7 fkyKZ7IhfPzuXxmer9iYGlniqlAV7aHPTBMc0wkxeS_MHgSIPmy0a2eAOzyAfgp7xIJA02q2DUbhIrldJZisYTBHR13hCcLW0E194cL_PPM_aWqYl7qPtXqscJc4SJ56AcIgbXVsQ8FdY068AxV7uUuWNlXYayU5MLCx gBiM_55dMxNbjIQB_Td1hYUyqqIS9Ka41McUE ATw8QxPpwFSHBMpjeo9i7saLY9eLW5ThAZXCcHPvK1j0B7bE hcZqsOLWYvrzUSqVMapuCJyJUgeEqxKpk_69sZfxkqTaUy2N4Fge_QP6eKQ d2x8cHr_vwauMN0BhtdkF806H5regObgMP2ddmBJxYGdbyGN5IO_GjzYfWxZV5YDv 7pdA_TLC_nJkO2G_rmUyXnPgVI_vMjOYJzh8rDHrK1vTQbnIKiYrI8g8RofSUTYHeysSOY4ze9Ltn GuVciTSbnq7WBnfzki_vgC6 Sa6V9FuR4wAGznBK eT1nJapCxzQ==-GzsAAMTyFtv_jKdUWbS_8MyEx8BEDhxaIBc9kNXV5oG8MUaj0fePzetOoQqOuXBIIlxx PO2Vzc44QM=

http://www.bestfiles4world.com/c?x=Yn5BWKHkRcriyeCmRYJoNP m9iRUVGuXNepKRFWag5c=&c=eJkHfAHA7rwRMW8aYCWwEOzVihDe7Sd3mPtkVFyWlM 7qRFgbSjtEVLD5C oc3O/f6ZMMYzFNYnEcXm1VP/6mPT hd54b3eCNz9QmZVEIuQhvnQjbdLBWPz1SerDhh6F&downloadAs=Plants vs. Zombies Downloader - JalanTikus.exe&fallback_url=http://files.jalantikus.com/dde/367/.../PlantsvsZombies.exe

http://www.capitalbyteclear.com/c?x=0YCOQ56DsuMdKo0N0VUyrTDhO1QVOTpfOAAlN TTbvE=&c=3SySByEmp8jbmuvxjay3erMCju4vgJXGXOpg2Y5a/2EsEb/8X0K 5TnWH8bf91gURdVuU/siXv8UUHk4tZtRUmFJlrQ EWd5eL58vDuAr8T sYd7 ufjIu5x91z7E4e8&downloadAs=Plants vs. Zombies Downloader - JalanTikus.exe&fallback_url=http://files.jalantikus.com/dde/367/.../PlantsvsZombies.exe

temp:PlantsvsZombies.exe

Scan plantsvszombies.exe - Powered by Reason Core Security