yohoho-75-install.exe

Puzzle Pirates

Three Rings Design, Inc.

This is a setup and installation application.
Publisher:
Three Rings Design, Inc.  (signed and verified)

Product:
Puzzle Pirates

Description:
Puzzle Pirates Installer

Version:
1.0.0

MD5:
2f9c9f97c330b239f0237732d01a71a4

SHA-1:
b7b59d78abf52d3e7a9ca3f151e1289799c4ea72

SHA-256:
a375b78de37988eca6f2a473d1569503d41876d601f53ba9c3df8c420eaa32ce

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/27/2024 1:32:36 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.8042

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
3.12.26.4

File size:
314.9 KB (322,432 bytes)

Copyright:
Puzzle Pirates (c)2001-2006 Three Rings Design, Inc.

Trademarks:
Puzzle Pirates(tm) Three Rings Design, Inc.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\yohoho-75-install.exe

Digital Signature
Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
7/28/2006 5:30:00 AM

Valid to:
9/30/2008 5:29:59 AM

Subject:
CN="Three Rings Design, Inc.", OU=Fun Department, O="Three Rings Design, Inc.", L=San Francisco, S=California, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
62C2EBF03D2F5F54B17CC1C20CD93C6E

File PE Metadata
Compilation timestamp:
11/24/2004 4:35:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
6144:QMMxRpO+mqNWzA3MWYT+vy4hdwmgOKZonINLac61PRiRedh6EXhwHkXK1G7Dj:QlxrfNfc8vy4hdHgjWnINgRiRC6EWHkn

Entry address:
0x34B5

Entry point:
55, 89, E5, 57, 56, 53, 83, EC, 24, C7, 45, DC, 00, 00, 00, 00, C7, 45, D8, 00, 00, 00, 00, E8, 8F, 48, 00, 00, 6A, 00, E8, B8, 47, 00, 00, A3, 00, 0D, 43, 00, BF, D0, A2, 40, 00, 68, 13, A3, 40, 00, 68, C0, 0D, 43, 00, E8, 10, 2B, 00, 00, B3, 20, 68, 00, C4, 43, 00, 68, 00, 04, 00, 00, FF, 15, 48, 24, 43, 00, E8, 38, FF, FF, FF, 85, C0, 75, 2D, 68, FB, 03, 00, 00, 68, 00, C4, 43, 00, FF, 15, 54, 24, 43, 00, 68, 1E, A3, 40, 00, 68, 00, C4, 43, 00, FF, 15, B4, 24, 43, 00, E8, 0F, FF, FF, FF, 85, C0, 0F, 84...
 
[+]

Entropy:
7.8581  (probably packed)

Code size:
30 KB (30,720 bytes)

Scan yohoho-75-install.exe - Powered by Reason Core Security