setup.exe

Aion

NCsoft

This is a self-extracting archive and installer.
Publisher:
NC Interactive, Inc.  (signed by NCsoft)

Product:
Aion

Description:
Fantasy MMORPG

Version:
1.0.0.34

MD5:
f8a42e94c7b3c3b95de0c2a829d36043

SHA-1:
52c9ca4f6eeb353d04a138a8dbc4b0a833796a21

SHA-256:
31f61bb170bcc00cb1b11248ee76e7fc07d63f87a890ccd499cc8c34fdfcbe38

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/24/2024 1:50:39 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Heur.Pck.MoleBox
2293

Dr.Web
BACKDOOR.Trojan
9.0.1.0188

File size:
5.3 MB (5,596,856 bytes)

Product version:
1.0.0.34

Copyright:
© 2009 NC Interactive, Inc. All rights reserved.

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
6/16/2009 5:00:00 PM

Valid to:
6/17/2010 4:59:59 PM

Subject:
CN=NCsoft, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=NCsoft, L=Austin, S=Texas, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
28B854095B1683DAE4ACA9C9CB8EF492

File PE Metadata
Compilation timestamp:
5/4/2009 8:13:21 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:Mi+yS5p1QdeA0w0acl//ZNtLLnnkwiS5zD8PiNIvU8D/5/2iYUN6JVvGl:fnGAW//ZLnThNIvU8D+c6JVW

Entry address:
0x1B6253

Entry point:
E8, 00, 00, 00, 00, 60, E8, 4F, 00, 00, 00, 2B, 4F, 4D, CA, 2D, 52, 73, 47, 4A, 2E, 1C, 07, 61, 3B, D8, 20, 3D, 19, AC, E3, AD, 23, BB, 8F, 13, 28, E4, 62, EA, 5E, 04, F2, 8D, 4C, 22, BC, 2D, 36, CA, 45, C8, FE, D3, 04, 7D, 06, C8, C1, E1, E5, 0E, 92, B4, A4, 67, 24, E1, E5, 0E, 92, B4, A4, 67, 24, E9, C9, 4B, 00, 00, E9, DD, 4B, 00, 00, E9, D8, 4B, 00, 00, E8, 5E, FB, FF, FF, 4E, DD, 00, 00, 43, 8F, 00, 00, 73, 59, 7A, 07, B8, A4, 41, C3, 3B, F2, D4, BC, 51, 9D, 71, 30, F1, 85, 70, 33, B7, 48, 49, CF, 8C...
 
[+]

Entropy:
7.8490

Packer / compiler:
MoleBox v2.0

Scan setup.exe - Powered by Reason Core Security