home

Setup.exe

VTC Intecom

This downloadble file is typically blocked through Google's Safe Browsing technology in Chrome web browser. The file has been seen being downloaded from vtcgame.vn and multiple other hosts.
Publisher:
VTC Intecom

Description:
Đột kích 2.0 - Phiên bản 1203

Version:
1203

MD5:
4bb4b9d6ccef6dd91140dc7f9bc6f9ef

SHA-1:
be8e174d1eb6221d0bb180db5582231f0017e286

SHA-256:
33d17033de2a0f89deff0c40aa9233900b48ee26dac8ad1e379225f6dfb2a263

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/6/2024 6:23:31 AM UTC  (today)

File size:
0 Bytes

Language:
Russian (Russia)

Common path:
C:\users\{user}\downloads\setup.exe

File PE Metadata
Compilation timestamp:
12/30/2012 4:38:51 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
50331648:dr1peXm8wzxR99q44XJYn9rsZwmEBa6pnmDe3CHWwfCNkpCReTGp:dr/eXPwzjqNXCngnObuiWCNhsT8

Entry address:
0x1942F

Entry point:
55, 8B, EC, 6A, FF, 68, 70, C4, 41, 00, 68, C0, 95, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, E0, A1, 41, 00, 59, 83, 0D, E4, 2D, 42, 00, FF, 83, 0D, E8, 2D, 42, 00, FF, FF, 15, E4, A1, 41, 00, 8B, 0D, CC, 0D, 42, 00, 89, 08, FF, 15, E8, A1, 41, 00, 8B, 0D, C8, 0D, 42, 00, 89, 08, A1, EC, A1, 41, 00, 8B, 00, A3, E0, 2D, 42, 00, E8, 1D, 01, 00, 00, 39, 1D, 50, E9, 41, 00, 75, 0C, 68, B8, 95, 41, 00, FF, 15, F0, A1...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
99.5 KB (101,888 bytes)

The file Setup.exe has been seen being distributed by the following 4 URLs.

https://vtcgame.vn/.../getDLLink?downloadId=4979&ispId=129&locationId=8&random=0.48197125596925616

https://vtcgame.vn/.../getDLLink?downloadId=4979&ispId=129&locationId=9&random=0.5987820108421147

https://vtcgame.vn/.../getDLLink?downloadId=4979&ispId=129&locationId=9&random=0.9432089722249657

http://dl5.vtcgame.vn:2008/CF_Full_1203_Manual.exe

Scan Setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.