poke dt 1.3.exe

Tibia Player

CipSoft GmbH

This is a setup program which is used to install the application. The file has been seen being downloaded from download766.mediafire.com.
Publisher:
CipSoft GmbH

Product:
Tibia Player

Version:
8.54

MD5:
5ef0d78500df35ab1723b4b0176d5a8e

SHA-1:
836b4884f39ce030858d06ebc51af285ee3404a1

SHA-256:
589a5a482084012fd556603990e5940d7f32a61cb4bb3f07a69886f8f2800d82

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 10:32:09 AM UTC  (today)

File size:
31.8 MB (33,358,281 bytes)

Product version:
8.54

Copyright:
Copyright (C) CipSoft GmbH 2002-2009

Trademarks:
Tibia is a registered Trademark of CipSoft GmbH.

Original file name:
Tibia.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\poke dt 1.3.exe

File PE Metadata
Compilation timestamp:
12/8/2009 7:45:51 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
786432:hC+3FhxGY4uPuUPAWalyryfFKfm/eCBPS67NSnlB:MI/GYRWUYWaly+tKYB6qNUB

Entry address:
0x436B33

Entry point:
E8, 00, 00, 00, 00, 60, E8, 4F, 00, 00, 00, 11, 9F, BB, DE, 3F, BF, 16, DD, 43, 2B, 38, C0, BB, E5, 0F, 59, C8, 1B, 48, 53, 59, 70, 38, 48, A6, B2, FD, 24, 2C, 82, E2, A7, 46, 8A, 27, E3, 1E, 8B, 5B, 0D, C2, 90, 07, 50, 53, F8, 66, CA, A6, C2, DC, DC, 58, FE, B1, F8, A6, C2, DC, DC, 58, FE, B1, F8, E9, 1A, 6D, 00, 00, E9, 2E, 6D, 00, 00, E9, 29, 6D, 00, 00, E8, 6E, FB, FF, FF, 6E, 04, 01, 00, 7E, 99, 00, 00, F4, 7F, 52, 99, 46, C8, D1, 96, D9, 80, 74, 16, D7, 4D, 91, EF, 02, 5D, D0, FD, DA, D5, 69, A5, 05...
 
[+]

Packer / compiler:
MoleBox v2.0

The file poke dt 1.3.exe has been seen being distributed by the following URL.

Scan poke dt 1.3.exe - Powered by Reason Core Security