home

Game.exe

斗破苍穹

Beijing AmazGame Age Internet Technology Co., Ltd.

The application Game.exe by Beijing AmazGame Age Internet Technology Co. has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Changyou.com limited  (signed by Beijing AmazGame Age Internet Technology Co., Ltd.)

Product:
斗破苍穹

Version:
0, 9, 0, 0

MD5:
b907ed80a0a8597d5de0c942b6e9d202

SHA-1:
f652c628962a66235f8e521b4a31f9e868e567c2

SHA-256:
797cf4063f953d050da80c64a49a68617c1d53a5c428c7f78a6212cfd7bcb27d

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
9/21/2024 2:19:47 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.BeijingA
17.3.8.5

File size:
1.6 MB (1,721,928 bytes)

Product version:
0, 9, 0, 0

Copyright:
(C) 2008-2011 Changyou.com Limited.All Rights Reserved

Original file name:
Game.exe

File type:
Executable application (Win32 EXE)

Language:
Chinese (Simplified, China)

Common path:
C:\Program Files\001 ubisoft\001\assican crred\new folder\new folder\斗破苍穹\bin\game.exe

Digital Signature
Signed by:
Beijing AmazGame Age Internet Technology Co., Ltd.

Authority:
Symantec Corporation

Valid from:
3/18/2015 8:00:00 AM

Valid to:
6/17/2018 7:59:59 AM

Subject:
CN="Beijing AmazGame Age Internet Technology Co., Ltd.", O="Beijing AmazGame Age Internet Technology Co., Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
32986F1A747EDB31B8BB8BD88A2A0D03

File PE Metadata
Compilation timestamp:
2/20/2017 6:22:11 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x1000

Entry point:
68, 01, 70, 8F, 00, E8, 01, 00, 00, 00, C3, C3, 0A, B8, 86, ED, 7C, AD, 17, 29, CA, F5, 90, 29, AC, 64, 4D, 8F, 86, C0, 84, 01, 5B, 5C, A7, F5, 84, 6D, 70, 58, 88, 7B, 27, 56, BA, B7, 46, FB, 6D, 5B, AC, FE, 38, 9A, 8E, 84, 02, CF, 1C, 98, 5D, 9A, 91, 35, ED, DD, AD, AC, 87, 3D, 9A, 11, 85, 53, 44, 52, E8, BB, 97, C9, 22, 11, 35, 47, E4, 80, 05, A7, 97, 2D, D2, B8, 4A, 70, C4, 9B, 65, A2, 4E, 07, E6, 74, DD, D8, 9C, 09, B1, DD, 2F, 86, A2, 52, C4, DA, D5, 91, 3F, 3E, 80, 1D, A6, 5E, CF, B1, A3, B4, E8, B0...
 
[+]

Entropy:
7.9641

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
3.9 MB (4,050,432 bytes)

Remove Game.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.