» vn_160616to160621.exe
Overview
Analysis
File Details
Downloads (1)

vn_160616to160621.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from cdn.ved.com.vn.

File name:

MD5:

b74139758bef9749e4d15e3ff52cee32

SHA-1:

a87650df985a4ff2a42aa18cee77c0eec4eb36dd

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/27/2024 2:34:24 AM UTC (today)

File size:

13.8 MB (14,418,016 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

9/26/2014 10:19:05 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

196608:71M4NTzGiN6JLi6B/Wcy5WR2NhfHXeQ1Xocmfc3JblhlFqlCSK2gQSdMZSUEt1PW:pMMA48/WcjRU9XeQ14cME5A3kJqp

Entry address:

0x5010

Entry point:

41, F2, F6, C3, 4C, 72, 0E, 1A, D7, 69, C2, 10, 57, F9, CA, C7, C1, CB, DE, 9D, 1A, 81, FF, 0F, 33, 00, 00, 70, 06, 81, F2, 76, 13, 2C, 4F, 80, DC, C9, 0F, AF, D1, 73, 0A, BD, D8, A8, F9, DC, BA, CF, 07, AF, 13, 8D, 05, 37, 51, F5, FF, 8B, FB, 8D, 2D, 8E, 33, 64, FF, 05, 9C, C5, 0A, 00, 8D, 3D, AC, 91, 46, B6, 50, C6, C2, 94, 81, F5, 86, A2, 9A, 03, F6, C0, 89, 59, 70, 0A, 8D, 3D, 01, 27, 68, 84, 23, FD, FE, CA, 81, C1, A6, CD, 00, 00, 0F, AF, C5, 2D, 06, 09, 78, 77, 8D, 31, F2, 81, C6, AF, 07, 00, 00, F6... 
[+]

Entropy:

7.9316 (probably packed)

Code size:

50 KB (51,200 bytes)

The file vn_160616to160621.exe has been seen being distributed by the following URL.

http://cdn.ved.com.vn/gamevn/lmht/.../VN_160616to160621.exe

Scan vn_160616to160621.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.