home

pokemon.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from dl2.romdownloads.info and multiple other hosts.
MD5:
ae3af5f882f05d0ba69dd24e4b5fdd41

SHA-1:
1b6cd9d63e83fb2a1246eb393a3aa67e6fa98007

SHA-256:
63164653204c3b216ec00b36fc1d5f4f0025f7660b221fe64297cb0999ad35c8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/6/2024 6:29:41 AM UTC  (today)

File size:
6.7 MB (6,978,335 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\pokemon.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
196608:QZ5zJglpL/tSVDtLHMLftDp18bcfW0U/m2:QrJg7LOGpgcfMu2

Entry point:
50, 4B, 03, 04, 14, 00, 02, 00, 08, 00, 00, A4, 98, 21, FB, 08, 1C, 1F, 7B, 7A, 6A, 00, 00, 00, 00, 01, 21, 00, 00, 00, 50, 6F, 6B, 65, 6D, 6F, 6E, 20, 2D, 20, 45, 6D, 65, 72, 61, 6C, 64, 20, 56, 65, 72, 73, 69, 6F, 6E, 20, 28, 55, 29, 2E, 67, 62, 61, C4, FD, 0B, 7C, 1B, D5, 95, 38, 00, DF, 19, 8D, A4, 91, 2C, CB, 92, ED, 24, 23, 67, 92, 8C, 64, 3B, 91, 1D, 27, 91, 9D, 07, 0E, E5, A1, 48, CE, 30, B2, 9D, C4, A4, AF, F0, AC, 02, 81, 2A, 14, 5A, 39, 61, 8B, 1C, D2, 46, 4E, 02, C8, 81, 76, 9D, 10, C0, 79, 00...
 
[+]

Entropy:
7.9977  (probably packed)

The file pokemon.exe has been seen being distributed by the following 3 URLs.

http://dl2.romdownloads.info/Gameboy Advance/.../Pokemon - Emerald Version (U).zip

https://www.loveroms.com/r/Gameboy Advance/.../Pokemon - Emerald Version (U).zip

http://www.completeroms.com/files/Gameboy Advance/.../Pokemon - Emerald Version (U).zip

Scan pokemon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.