setup.exe

Tomb Raider: Underworld Demo

Nixxes Software Test

This is a setup and installation application. The file has been seen being downloaded from clres.getthegun.com and multiple other hosts.
Publisher:
Eidos Inc.  (signed by Nixxes Software Test)

Product:
Tomb Raider: Underworld Demo

Description:
Tomb Raider: Underworld Demo installer

Version:
1.0

MD5:
adb900d9cb70b5f1455b4d05468bac27

SHA-1:
dd346869b16943279ae03aab13c88175a9f86c38

SHA-256:
bc1bd584d99b774d32c224a32cea47a1be4ec68d15f336617bf1e8fb494e36ed

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 9:31:14 AM UTC  (today)

File size:
2.5 MB (2,604,120 bytes)

Product version:
1.0

Copyright:
Copyright (C) 2008 Eidos Inc.

Trademarks:
Crystal Dynamics(R), the Crystal Dynamics(R) logo and the Eidos(R) logo are registered trademarks of the Eidos Group of Companies

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Digital Signature
Authority:
Root Agency

Valid from:
12/14/2006 12:22:23 PM

Valid to:
1/1/2040 12:59:59 AM

Subject:
CN=Nixxes Software Test

Issuer:
CN=Root Agency

Serial number:
BDF78629976004AC4B6354B7454009E3

File PE Metadata
Compilation timestamp:
10/28/2008 4:38:49 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:Hhuv2UmE6S/ZUlWfeIJAj7llTAfl1HZAagWDSUVSbcGz2Gh:ovFmS/WOeIJAt+p28EbcGC2

Entry address:
0x3D332

Entry point:
E8, 42, AF, 00, 00, E9, 16, FE, FF, FF, 51, 53, 55, 56, 57, FF, 35, 2C, C2, 48, 00, E8, F8, 77, 00, 00, FF, 35, 28, C2, 48, 00, 8B, F0, 89, 74, 24, 18, E8, E7, 77, 00, 00, 8B, F8, 3B, FE, 59, 59, 0F, 82, 84, 00, 00, 00, 8B, DF, 2B, DE, 8D, 6B, 04, 83, FD, 04, 72, 78, 56, E8, F3, 07, 00, 00, 8B, F0, 3B, F5, 59, 73, 4A, B8, 00, 08, 00, 00, 3B, F0, 73, 02, 8B, C6, 03, C6, 3B, C6, 72, 10, 50, FF, 74, 24, 14, E8, F8, AF, 00, 00, 85, C0, 59, 59, 75, 17, 8D, 46, 10, 3B, C6, 72, 43, 50, FF, 74, 24, 14, E8, E1, AF...
 
[+]

Code size:
344 KB (352,256 bytes)

The file setup.exe has been discovered within the following program.

Firefox has established a reputation as one of the most innovative web browsers in the market.
www.mozilla.org
9% remove it
 
Powered by Should I Remove It?

The file setup.exe has been seen being distributed by the following 5 URLs.

https://clres.getthegun.com/.../setup.exe

http://secure.19-pn-installer.com/o/.../Setup.exe

Scan setup.exe - Powered by Reason Core Security