» call-of-atlantis_en_trial.exe
Overview
Analysis
File Details
Programs (1)
Downloads (1)

call-of-atlantis_en_trial.exe

Playrix LLC

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from files.playrix.com.

File name:

Publisher:

Playrix Entertainment (signed by Playrix LLC)

Version:

1.0.0.999

MD5:

80d2393f946c8a45b5d43b04cb67f253

SHA-1:

654f9d13b0684ae455a47678cfc6c36bc770ef07

SHA-256:

0766888c2db3a37468f5cd48c24f947dec861e068b046acbd26f24371a900000

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/25/2024 4:48:55 PM UTC (today)

File size:

57.3 MB (60,070,440 bytes)

Product version:

1.0

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\call-of-atlantis_en_trial.exe

Digital Signature

Signed by:

Playrix LLC

Authority:

COMODO CA Limited

Valid from:

10/17/2011 2:00:00 AM

Valid to:

10/17/2014 1:59:59 AM

Subject:

CN=Playrix LLC, O=Playrix LLC, STREET="52 Maltseva street, 5th floor", L=Vologda, S=Vologda region, PostalCode=160009, C=RU

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

0094022230159D56EB1A5F78A908B500D5

File PE Metadata

Compilation timestamp:

6/20/1992 12:22:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

1572864:kUAr3ajM9iWC6DnVjLuwWb1Wnz7x7J+KV220+3luHs:rg4M9jDDByws67UKVv0+3luM

Entry address:

0x9C18

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, AE, 94, FF, FF, E8, B5, A6, FF, FF, E8, 44, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, D4, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 9D, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 5A, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD... 
[+]

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

37 KB (37,888 bytes)

The file call-of-atlantis_en_trial.exe has been discovered within the following program.

SnapPea by Wandou Labs

The software currently distributes the app through the OpenCandy monetization platform which is known to distribute adware.

snappea.com

25% remove it

The file call-of-atlantis_en_trial.exe has been seen being distributed by the following URL.

http://files.playrix.com/games/.../call-of-atlantis_en_trial.exe

Scan call-of-atlantis_en_trial.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.