pokedios v2.exe

Tibia Player

CipSoft GmbH

This is a setup program which is used to install the application. The file has been seen being downloaded from download2194.mediafire.com.
Publisher:
CipSoft GmbH

Product:
Tibia Player

Version:
8.54

MD5:
6db56c939314a2defebf3992f5af9d67

SHA-1:
1b5584ac6ff06457ed14a187c6d2453cb5b7a191

SHA-256:
c508e685a26803e4f5c05b9605c5359bf36efdb1c363f15c7970043f6998ec74

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 2:26:31 PM UTC  (today)

File size:
37.8 MB (39,587,447 bytes)

Product version:
8.54

Copyright:
Copyright (C) CipSoft GmbH 2002-2009

Trademarks:
Tibia is a registered Trademark of CipSoft GmbH.

Original file name:
Tibia.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\pokedios v2.exe

File PE Metadata
Compilation timestamp:
12/8/2009 7:45:51 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
786432:SPa1F0NR45zXO0IshwzM+vDbAF8D0GZjPcR2N+9R0KBTW9X:ma12Ny5z+FbhbAFYZAMCR0KBTC

Entry address:
0x3F5B33

Entry point:
E8, 00, 00, 00, 00, 60, E8, 4F, 00, 00, 00, 10, 39, F1, 6F, 31, B3, E3, 9C, A0, 76, B6, F8, E5, 0E, 29, 7C, 21, 08, 60, A9, 66, B0, CE, FF, EA, 7F, 57, AB, 35, 40, 59, 6D, C9, 0A, 5B, B1, F7, CF, 37, 34, BE, 59, 9F, 35, 98, DE, 3F, 03, 9E, 2F, DA, A2, 73, D2, 8C, FE, 9E, 2F, DA, A2, 73, D2, 8C, FE, E9, 1A, 6D, 00, 00, E9, 2E, 6D, 00, 00, E9, 29, 6D, 00, 00, E8, 6E, FB, FF, FF, 6E, 04, 01, 00, 7C, 99, 00, 00, 8B, 0A, 61, A3, DB, 1B, D1, 26, 6A, 88, 74, A6, D9, F0, 91, DF, C7, 91, D0, AD, DC, D3, 69, 35, B5...
 
[+]

Packer / compiler:
MoleBox v2.0

The file pokedios v2.exe has been seen being distributed by the following URL.

Scan pokedios v2.exe - Powered by Reason Core Security