home

setuptouch_4gamesexpress_en.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from d3dpfszsi3fome.cloudfront.net.
MD5:
a1e58a8d85d10ff88e663373bceaf140

SHA-1:
9c6a31b30343130741efd5ce2efad6220d5b94a5

SHA-256:
064f322f55929ea7bf8277c9c577ea25ad4d84de1849d840195caf28e05f4271

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/28/2024 3:41:20 AM UTC  (today)

File size:
6 MB (6,303,792 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\setuptouch_4gamesexpress_en.exe

File PE Metadata
Compilation timestamp:
6/15/2008 6:49:09 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:mheAQ/CNiukQNZjLfFRjG35d6lCMD1i0ZcPMt4vfpbZVAjW7TFGVJMS6YA1:mMA8CNihQHhRy3P6lNJtgbD3AJMS6n1

Entry address:
0x356F

Entry point:
0F, AF, EE, 87, DE, 8D, 1D, 57, 80, D0, 03, 8B, F0, 0D, AE, A1, C3, 35, F3, F3, 81, F8, AD, 37, 0E, 89, 0F, AF, E8, 80, D5, DA, 18, EE, 8D, 15, A3, D1, 2D, 64, 8B, F6, 0C, F0, 88, F2, 88, ED, 0F, B6, CA, 56, EB, 05, FE, CE, 80, CD, 6A, 5B, EB, 08, 8D, 0D, 8D, 3D, 82, 43, 89, C0, 23, C5, C6, C0, 19, 87, D2, 53, 72, 09, 0F, AF, D0, 0F, AF, CF, 80, F6, FC, 5F, 80, D1, DB, 42, F7, C0, 75, 14, A0, 2D, 8A, F5, 87, CA, 68, 73, 79, D2, 00, 68, E9, EB, 38, 00, 40, 87, D8, 80, C5, D3, F7, C2, 12, D2, B0, 3E, F3, 8D...
 
[+]

Entropy:
7.9736  (probably packed)

Code size:
24.5 KB (25,088 bytes)

The file setuptouch_4gamesexpress_en.exe has been seen being distributed by the following URL.

http://d3dpfszsi3fome.cloudfront.net/patch/.../SetupTouch_4gamesExpress_en.exe

Scan setuptouch_4gamesexpress_en.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.