home

Train Simulator 2016.exe

Train Simulator 2016

Skidrow

This is a setup program which is used to install the application. The file has been seen being downloaded from pcgramypc.pl.
Publisher:
Skidrow

Product:
Train Simulator 2016

Version:
1.0.0.0

MD5:
1d43fb6e1195d6e6870e5722e699443a

SHA-1:
d89bd2c538ca5fc8aae55839b44f46940c389bd4

SHA-256:
1037c3c118eb8420a2c9bb75d76c3c3341b628dfdf5b7520bb06bde371d4a59a

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/15/2024 1:56:54 PM UTC  (today)

Scan engine
Detection
Engine version

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1077

File size:
1.8 MB (1,865,728 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © Acer 2015

Original file name:
Train Simulator 2016.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\train simulator 2016.exe

File PE Metadata
Compilation timestamp:
9/14/2015 9:17:33 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
49152:3qLIOXf/uY5R83HFPUIjYdZ0h4R/nbx+2axoyvJlC:3qsY5RKHF9jYgmdAxo+Jk

Entry address:
0x1A8B7E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1.7 MB (1,731,584 bytes)

The file Train Simulator 2016.exe has been seen being distributed by the following URL.

http://pcgramypc.pl/trainsimulator2016

Scan Train Simulator 2016.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.