home

BlackShot.exe

BlackShot

Vertigo Games, Inc.

The executable BlackShot.exe has been detected as malware by 3 anti-virus scanners.
Publisher:
Vertigo Games  (signed by Vertigo Games, Inc.)

Product:
BlackShot

Version:
3, 0, 14, 83

MD5:
27eb937b4a3aa10dfb7630431982543e

SHA-1:
3da7e020db0da8e164699e5120db3ddb2699f486

SHA-256:
daf96d720ab67e9af7f0438d7b3bf70aca8bb2ba4a566c30f2f0db25ec69ea10

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
5/2/2024 3:07:35 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

F-Secure
Win32.Floxif.A
5.15.154

File size:
6.4 MB (6,690,191 bytes)

Product version:
3, 0, 14, 83

Copyright:
Copyright (c) - 2007

Original file name:
BlackShot.exe

File type:
Executable application (Win32 EXE)

Language:
Korean (Korea)

Common path:
C:\Program Files\playone\blackshot_sea\blackshot\system\blackshot.exe

Digital Signature
Signed by:
Vertigo Games, Inc.

Authority:
Symantec Corporation

Valid from:
10/10/2016 8:00:00 AM

Valid to:
11/10/2017 7:59:59 AM

Subject:
CN="Vertigo Games, Inc.", O="Vertigo Games, Inc.", L=Gangnam-gu, S=SEOUL, C=KR

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0D2CC5733537677CDEA90E56C55C0864

File PE Metadata
Compilation timestamp:
1/3/2017 11:22:05 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x31CB90

Entry point:
E9, A0, E0, EE, FF, E9, 00, 00, 00, 00, 6A, 14, 68, 78, 8A, 97, 00, E8, 7A, 94, 00, 00, E8, 8A, 41, 00, 00, 0F, B7, F0, 6A, 02, E8, 75, 22, 02, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 1B, EF, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, 22, 01, 00, 00, 59, E8...
 
[+]

Entropy:
6.7447

Packer / compiler:
Xtreme-Protector v1.05

Code size:
4.8 MB (5,082,112 bytes)

Windows Firewall Allowed Program
Name:
blackshot


Remove BlackShot.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.