» as3d_demo.exe
Overview
Analysis
File Details
Downloads (11)

as3d_demo.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.

File name:

as3d_demo.exe

MD5:

8722cbe6da225d927e87438055849bb3

SHA-1:

f500c567e5125206e2c1821549f61b2aaba8951b

SHA-256:

caed5bd8ab1f39eb91b31181e2a9d224d41c36ef4fa51f9917eeea679bc29d78

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/19/2024 6:44:55 PM UTC (today)

File size:

7.9 MB (8,247,893 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\games\as3d_demo.exe

File PE Metadata

Compilation timestamp:

10/11/2002 3:00:45 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

3.0

CTPH (ssdeep):

98304:uB5VTyD41paTlE6trMjF/ZV1GfzDBXFFvM3fBIY+5LzPmDwL9OQVCF5hy76pbSDq:6yGpQ/r8/iJ8/+5LzPj9O3/SG2+04l

Entry address:

0x1650

Entry point:

81, EC, 0C, 04, 00, 00, 53, 56, 57, 55, 68, 60, 50, 40, 00, 6A, 01, 6A, 00, FF, 15, D8, 80, 40, 00, 8B, F0, FF, 15, D4, 80, 40, 00, 3D, B7, 00, 00, 00, 75, 0F, 56, FF, 15, B8, 80, 40, 00, 6A, 02, FF, 15, A4, 80, 40, 00, 33, DB, E8, F2, FE, FF, FF, 68, 02, 7F, 00, 00, 89, 1D, 94, 74, 40, 00, 53, 89, 1D, 98, 74, 40, 00, FF, 15, E4, 80, 40, 00, 50, FF, 15, E0, 80, 40, 00, 8B, 0D, 00, 50, 40, 00, E8, 68, FF, FF, FF, B9, 40, 0D, 03, 00, 89, 44, 24, 14, E8, 5A, FF, FF, FF, 68, 00, 02, 00, 00, 8B, 2D, D0, 80, 40... 
[+]

Entropy:

7.9983

Packer / compiler:

CreateInstall v2003.3.5

Code size:

8.5 KB (8,704 bytes)

The file as3d_demo.exe has been seen being distributed by the following 11 URLs.

https://dw.uptodown.com/dwn/IHEhDRNtjA6U_OT8wAda7yXG_KhhdyQsEBcMDtjlMU5-aX9WVC6Dn_46NSFCFmcyny4pvd5CBFLpWlpQPbwJFrqCshLAXmhOv_NFcpxkjPQ8pAkFzVJm_I2aSjHIYBBU/UiVbx8avg15B0GKa2diqaeRi4K6ppQJyyNisjdkiqjSWqDCIUasQ88tS08nux7h8LWSvQRdX0y5yBPUacjf5dh5QzREkqkEmdmKfA0iJ_PWmCmB52EXlxjzAExZxCBWB/Q6NZb6AUnIfdwtQiiMttH5UV5ySnjsVgccWyOwtrAwC_VaQmRRIabslnEanM-1HqbO7ejZD4gzJ-lQbF3AniRkc7z5bF7e5XDHE8Dsy8Ch9aKnoaVkP-47TiKPZlxvtZ/.../

http://www.currentupdateconcepts.com/UhDKmBPpu_UDdrMRn1_DM 1VRV_MULJQORV7yLAywQ1m00jsy6vFe70_Wb_ukZ3XtpI7P0oU_JWly2j1f4F1bmBSF8MPEt_UmndAnEwPqjK2L9huXisoEdqBRZym7ZulOCjgH5g4KcNLO_ENu4gG2S4demvtpT25qF J8dHG08pG58CEymXpkZ8CjP2huMwqwK9OwEgWqbLE0zG64bMIQBJBCDjMqQ==-Gz4AAETnFhM EINjg_BZ8JgEhxw4fAdtnmAAHmyMnSs47OUa5zYKG 4tB0HNE0 ZJ0KaEmI8dxhdnw0=

http://w7.mien-phi.com/data/soft/2013/08/.../as3d_demo.exe

https://dw.uptodown.com/dwn/OjJ9yErsGw16p4PX0XGqHqBAxLsno21_M3ac10QoV0UuNtz1N6zJFJfRPjL5tcDl8qQS_PxIZXlWy4YoJve7F2kFTu2bsHtmUsplzHSOA8WsCUpI0Gu_eMQzAYYXxk-e/PRKuCjFj2I_2TMSj_YbcKtzrE41T8nCO_aZw9D_e7jdEzjgwY3Rj6nJJLykFCQfdoHLLjwUlzaD3lrKSSacey8Wci7A8ha92eJF4DPoN7YOKEo0wrVXLXt4nE-f0JSFd/pJSfZDGJbzhataHuhHcF09dNhJtyS_UtMNPxC4RffinDTqrrtffAGkOkdF-9Wq7bFVLf7mE3q8anwC1o60_GL3IrIDRvIA3bzpHbIVRyefQR9cggdXdpWcvRcyyxz32g/.../

http://w1.mien-phi.com/data/soft/2013/08/.../as3d_demo.exe

https://dw.uptodown.com/dwn/clK5VhFxnoRu370HcnSicOKbKZzfd45s0AhcfN_bdgv190fnyylHKDsPpTw_a2wJyePgjdOSBaaP8MY3Y4YfIGOcUx_m3dD2pAB4PVPvt6eM2xI9Tu-9JRODljmYcH_H/FLfWaWu6bW7FXLw04CS-A6rozETmCMoDAwKRxozfUwCO7G1qaf7TfJZ2E_RsQctuhLH_9rW6gd5JYJW87Ew5pKJhAKNeyyYh-iX93gy-FRA7raU9w37rqjj1ugZJZN78/pdq8ri6aFqMe8rtdT19uwFaDMRyHuiQ6vh_YhnrKARcNtGDIqVzHblfj1703gG9kNVB1KVaQeL0325UMhVfpcvEOwG41mvSvvb6q6cGqyt_Zw0z_WO777mRumS-DXf7S/.../

http://dw.uptodown.com/dwn/uzkhepmJSpeJJ67CRltVP1sVvBBoDOxtkpN9RtScBZuwzlMm_UEjUfXUwuTh5ryjKj6RcUoddJ2KHAv6isUaUe18XY2kCfkSphBb1JK6M6RDPD1gwjOjAgmqurnbzIXX/RD_Ipy8wyn2MD_2t44ITiDOh12uW0FJncwzz0h5Uqh_6Idm1riQ0akJszyETneXxUPU6ZdaNN5eXENBEi1KvUjcjFyhUL4_Nh17-P4KDbEXmKSRMQB4D-xnwiVjWHkxN/SVKgX1HKLDz-o3gF2ZmEBr10CVJZfUBuansDPcTygSEggMtAEfY0w_0oyMvRcfhmwjL1MG5Cu46hjuT1TqG0LiHDUhcq0Y3AVo-HZhem2jv2QzXSXRmi8K92ch1V-cpw/.../

http://w6.mien-phi.com/data/soft/2013/08/.../as3d_demo.exe

http://www.divogames.com/games/.../as3d_demo.exe

http://airstrike-3d.en.softonic.com/download-tracker?th=1/.../oRtfJCilrbYuxZ40=

http://www.divogames.com/content/games/en/files/.../as3d_demo.exe

Scan as3d_demo.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.