setup_nfsw.exe

Electronic Arts

The program is a setup application that uses the Inno Setup installer. This is installed with Need For Speed™ World. The file has been seen being downloaded from www.laboratorycenterconecpt.com and multiple other hosts.
Publisher:
Electronic Arts   (signed by Electronic Arts)

Version:
1.0.0.1516

MD5:
f1ee8f14cd4e3d8a938b8eb334e9b3ce

SHA-1:
6693ad1b38dede9fe4c4ae30c72bbac0ac85d5b4

SHA-256:
6ee35854eabc49ab7e362b4cc8177fa70338a54fef53a1c28c9ab07fee2bb5b9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/26/2024 11:47:58 PM UTC  (a few moments ago)

File size:
6.1 MB (6,399,320 bytes)

Product version:
1.0.0.1516

Copyright:
Copyright © 2010 Electronic Arts, inc.

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Common path:
C:\users\{user}\downloads\setup_nfsw.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
7/27/2011 3:00:00 AM

Valid to:
10/4/2014 2:59:59 AM

Subject:
CN=Electronic Arts, OU=Synthetic, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Electronic Arts, L=Redwood City, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0C618E5C55725B09158B62149C425BA5

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:h0Jvb2IGnKVaWyum70G5IzuSWKmBzF1Zzp2XgIYrZJ:h0BKn0aWyAG51Vbzp2wIoZJ

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Entropy:
7.9779

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file setup_nfsw.exe has been discovered within the following program.

Need For Speed™ World  by Electronic Arts
Need for Speed World (previously known as Need for Speed: World Online) is the fifteenth installment in the long-running racing video game Need for Speed franchise published by Electronic Arts. Players can win parts from lucky draw.
www.ea.com/de
12% remove it
 
Powered by Should I Remove It?

The file setup_nfsw.exe has been seen being distributed by the following 16 URLs.

http://www.laboratorycenterconecpt.com/jnPfGY7mMRNe4rsM2QeArRqYBMwvlH0mfU9oTtBoGTFGX3Fpz0gB4msVPGh1xktv MpcILs9rWpxdPGnNYc4 flmQ0boU_BlHuSfu BV0B8VoOurCPDJbfAswQ19S8Hp D6sUevhjG2z3NsfxZhMonDPYFbOUmUojwEAqIbHTmPzVuAWsFmH1MDG5EYGmffZfYt1tVC6tFqFeXU0mGvXyjw zM1ohN0p2HCHRN3DUEJ45y8Z 3gXRJ6lyB Wb6QA2l3whqclvAsalzqG1w5utwjuf1MfBN1Wh4mfiMCXEGv5wzokDQqDiC_QlVGzNTpeCdheXeqhwMM6jsumbMJY0BxxLSr WjywxrQ8TQ5fa4RqUXCemXS13gyU_eEYzXuOAXM71tjOjdgyLGixhHHRX141AJBceMT0hbhpwi0nByO0bIpHII5i8sdzARiA7zq8x1ieXsS7d9hpbQQVcm88ttWi4sIto1gNBDuPWhR42Ouj2JgsGPByQbnws5mlq9fiZTHFLapLgvNTpMpt1ygVPaMMUW5X2yn51M ZKIQUV8DFdTBv2h6lwZ37 5oO8WVjCEDhmaG3zLu4_i2EoPFD3onXbXsSpQ==-G0QAAGRwXmwTWoIT PcmojSkkew 0HrOSKIi7p4XhkrgXhRwAno7jpdKSAWimkAlMCYY7nTuMC3vD6Q_AQ==-e

http://www.laboratorycenterconecpt.com/nr_p7IQ_251TImRNeVMsK7QVu4M_NK58AmXPWie8DPjZzTE7zHner06xEUZG2_4jumDmQI zwcpD5F13OeHm2YuByKewx80Znq_5NwpY6Houk0rcePqZlLMqKYA0KPUIMAANj ncF8LUoDMbclAk54FU5mRAAcs_OlZUNrFQQcbEfIxIFVjsXDGprexYIvJxYVvhfK3gHtc93FucAxXFd17yz799RRYrXHgbK9Obuua RdqHn5cR8EcIaDS0ZlQeuI3S_dc6l738NcPTtFHstROszTg3R2ZcziHRBY2Qxv6NhR UofOhG67JbC1W0JXihjVd89Hfo50fOZ Xsga_q1D8B1SBihtr190wluUVimCtvkhxOeBJXMw21OLQUsr0yaGOvVB 29I_wospMssaApyOKGuUJNmC4bS1PMmBhHE0YH_YCLTGKRUnmaqXv2aFI 6TrR aC48nIvgCBVWzftJHXwc3pMdaKPZQlxaCR4k qivxC3yv89XxPW_Owf6KFqgP9L5WBPX1jsgg5V8fyckEwPgvWtvmL2YwmG0UoG64Zq ocoF5YEB FGnzZaWmdFz6qEDj9AAgBo2FWsRqabTsFSmUWQ==-G0QAAGRwXmwTWoIT PcmojSkkew 0HrOSKIi7p4XhkrgXhRwAno7jpdKSAWimkAlMCYY7nTuMC3vD6Q_AQ==-e

http://www.laboratorycenterconecpt.com/MgXzv_fsIxBwf08NBiu46_td5mOMWcLjhmFEjpVB6Yb1BAzbFsUrT0Em3CBy4u5PZV6xiPEXuRz7rX3VWOr82gel_ftboaKO NWl0wp WDKy95DvHw3E39cfNI7rmM5BmXY9m99CBaiBR2ZRGNqePb4nTWi OmUJOR380MfvQ7s7rVzCojpLvqCzmjPbsTiAKwHfhPV0HYPUwgH1wg8TmXIs8g8DubzaWgU5PBOmMJni8R3AkuqlY3eeLJ_E ieG1e0eWj9lnPRwlr4NOHC jpmYqC1GjzFfU1cKnmhzwGXJSMweu2PcBgwN4QVYEUOZN_6y6A3xKCGTeNog0ZQ5qYQ1rdJY6phTl0kHawGZzIEMbH LT9Ba4FN5IrDNoy4kqAK8q05Ox37fqyiwG5zb H D8mfBrS5M3s30cL51UmT9Tebi0xPTt7zB9pBg00G8mRcV9PSaOv_tamv4_sg28FFbRXGk4vnF7WigqQhyDa42Iblm6pmbiKdlC8E4qcIr_YdkpCOT0crAZg7_F7JGl6 XKc8qfWw7FohC9ZAyaEHyFqa2nfwz4hWvmUfRiqwXzI_00NGVE4waU40 4XUehjfhxicHpQ==-G0QAAGRwXmwTWoIT PcmojSkkew 0HrOSKIi7p4XhkrgXhRwAno7jpdKSAWimkAlMCYY7nTuMC3vD6Q_AQ==-e

http://www.laboratorycenterconecpt.com/gcPEzCOyAyAgMNAuYjSV_37lEUDUC2m8qPXrBvntWG5kU1Wa4ZrQcNVB_KUql_dT5XcNj9nS9p_0XB r9ap82Wh9kWvwRX8kTOuIPls7l_vznA3lc38yKmqH7ZQrQp2ztT42nhYoj0FCiT4nsNdGVEiAK5Px9IBXWwBSSokL7kqqaltOCOQlEATcCJLOxU9wuE kjPHN nh9TRjWFsDFLd1iy0nULFDe9L5ASItqUw8hBwGFsSs7BOeRxnrxWC8N kaAJde9Pm4NYP1myCONA1Dv5p0BenlwZjwmjoaGSwgA06bCCRcXwuC0cU3cHPzrNgB RNYKr5Zp875EhLFY_hsl_Ikph mafuPgKeeNqvXQhnckRLfSIYFWgQksdYe9cgkChDUz9tyymO6hgfG6plReQ9mw7v4d0eY ZNg3YnKrn12qNtmkY47T2Q3gFdDJeiQeLXxHax19BlAQA9_6X1J1jhqCwHQ9uVi WjmU6AszVDXG_2E x8LiIA_tpIJlmuD Zx7Cf0kJrqyIxhrqA_suSW7ArIlk4j2aCKJ1nz1lW_6pAmkP8HwxdVbbIILcWZefMmKcrkADva8e__PenWR2nEz_Ug==-G0QAAGRwXmwTWoIT PcmojSkkew 0HrOSKIi7p4XhkrgXhRwAno7jpdKSAWimkAlMCYY7nTuMC3vD6Q_AQ==-e

http://www.laboratorycenterconecpt.com/MKMTOByZXTXfSjLeup8dU1Ui_E4YWfgozMhyvk bdKxSCBzHaF73diEKa49YRQS_v3hbIeYITEb7JT401Rrgg8zHYkqhF7NCYCqHihMsYrwNI5gE0fFFNoLAOGJjQ4Gsrhf0MJ9zdNXsnFvX7RfjJE7Xacxaw06FGqX9C4yE1nThnU7fqAKLM8ZtB2YheuZuOSeqvSgccadI3KSy80EWgPz2Ec9EOgmkIzMY_kjgUPHhUvlwp34p xygdM8jMsAv7F3Cd_1J4GVwhUOS6oa2GMOsiZpnma_lgEuVgpNxjsAqTV0kDPQCIoZasOfeGbtBRLvmgBY8t_q z5Vd7bUFWNaZUoTtrj3Q9vDhz553IrAErxpeqA3qt VpJth_FOvxrZ3YkhIsmIYTXUTJGCDjr3cOGjcDSrRDwxtK0JEmvUAAGhMr9auOfMQIi4vNhVH3sJ4M6UJ6ErRRT5UqSMDFbVThgLPHW7qF3lYoTSkzTEpqN9urIuDElwFYx8yMK3JzY4tu 46jJDZ5fWHyfqiBD3dsgSeZdmbum7dLan5TKdlHkPwcOLXrvdAL3yyeIbjq8f3EaLbzzDfM EbSvW3ETxpD_rhIjg==-G0QAAGRwXmwTWoIT PcmojSkkew 0HrOSKIi7p4XhkrgXhRwAno7jpdKSAWimkAlMCYY7nTuMC3vD6Q_AQ==-e

http://download.itnt.netdna-cdn.com/37/360392/.../setup_nfsw.exe

http://need-for-speed-world.soft32.com/goto/file/id/.../

https://d1ob5g40gc5b6g.cloudfront.net/37/360392/.../setup_nfsw.exe

Scan setup_nfsw.exe - Powered by Reason Core Security