xenomc.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from tibia.sx and multiple other hosts.
MD5:
9de70f13f5a35478b983c94f67667ea1

SHA-1:
3f45c83b5c2a7414e970fe081cf06e837fcf21ac

SHA-256:
dd592fc52c9def8e32e619d26bec60cf9a1bc6a20728099b7947f4a4a38e9fff

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 6:32:45 AM UTC  (today)

File size:
41.5 KB (42,496 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
9/16/2011 11:56:33 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
9.0

CTPH (ssdeep):
768:lLVcdwJqo5pxT2JROcUUlZIjdl3XdlzplTol837lHHk/cjD4:+wJqoeDOcUUlYdl3XdlzplTol837lHHh

Entry address:
0x2362

Entry point:
E8, 91, 04, 00, 00, E9, 9F, FD, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, C0, 51, 40, 00, 89, 0D, BC, 51, 40, 00, 89, 15, B8, 51, 40, 00, 89, 1D, B4, 51, 40, 00, 89, 35, B0, 51, 40, 00, 89, 3D, AC, 51, 40, 00, 66, 8C, 15, D8, 51, 40, 00, 66, 8C, 0D, CC, 51, 40, 00, 66, 8C, 1D, A8, 51, 40, 00, 66, 8C, 05, A4, 51, 40, 00, 66, 8C, 25, A0, 51, 40, 00, 66, 8C, 2D, 9C, 51, 40, 00, 9C, 8F, 05, D0, 51, 40, 00, 8B, 45, 00, A3, C4, 51, 40, 00, 8B, 45, 04, A3, C8, 51, 40, 00, 8D, 45, 08, A3, D4, 51, 40...
 
[+]

Code size:
7 KB (7,168 bytes)

The file xenomc.exe has been seen being distributed by the following 3 URLs.

https://tibia.sx/static/.../XenoMC.exe

Scan xenomc.exe - Powered by Reason Core Security