zylomgameinstallertemp.exe

RealGames Europe B.V.

This is a setup program which is used to install the application. The file has been seen being downloaded from cdn.games.zylom.net and multiple other hosts.
Publisher:
RealGames Europe B.V.  (signed and verified)

MD5:
e954649f948a07a7b8c06bff06c4cc44

SHA-1:
147620beac1aed37c5545223d3825b9dcb46af71

SHA-256:
aba1773239006c338eedbe7e17fcb48424ab44ea6219a1b7915698fd2c2ae4c6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 4:49:54 PM UTC  (today)

File size:
499.8 KB (511,784 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\zylomgameinstallertemp.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/18/2009 9:00:00 PM

Valid to:
5/27/2012 8:59:59 PM

Subject:
CN=RealGames Europe B.V., OU=Zylom Games, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=RealGames Europe B.V., L=Eindhoven, S=Noord-Brabant, C=NL

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7DBAA6044AD76F847804FD36704F0C73

File PE Metadata
Compilation timestamp:
6/30/2009 8:09:48 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
12288:cbXjq82xw1F5CPz+TYXUfwNxUk9vZoO3iBAGX2K3I:cbXjq82xw1Fqz+TYXUYNqkRuBA3KY

Entry address:
0x2732C

Entry point:
6A, 60, 68, 20, 80, 43, 00, E8, F4, C4, FF, FF, BF, 94, 00, 00, 00, 8B, C7, E8, 4C, C6, FF, FF, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, F8, 51, 43, 00, 8B, 4E, 10, 89, 0D, C0, 3E, 44, 00, 8B, 46, 04, A3, CC, 3E, 44, 00, 8B, 56, 08, 89, 15, D0, 3E, 44, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, C4, 3E, 44, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, C4, 3E, 44, 00, C1, E0, 08, 03, C2, A3, C8, 3E, 44, 00, 33, F6, 56, 8B, 3D, CC, 50, 43, 00, FF, D7, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
208 KB (212,992 bytes)

The file zylomgameinstallertemp.exe has been discovered within the following program.

Zylom Games Player Plugin  by Zylom Games
The downloadable versions of games are called Deluxe games. Anyone who registers (for free) can download free trials of the Deluxe games before purchasing. New games are released every week – one online game and two Deluxe games.
www.zylom.com
24% remove it
 
Powered by Should I Remove It?

The file zylomgameinstallertemp.exe has been seen being distributed by the following 2 URLs.

Scan zylomgameinstallertemp.exe - Powered by Reason Core Security