» casinosetup.exe
Overview
Analysis
File Details
Behaviors (1)
Downloads (1)

casinosetup.exe

Playtech Software Installer

Playtech Software Ltd.

This is a self-extracting archive and installer. This is the uninstaller utility registered in the Windows Control Panel for the program Grand Reef Online Casino. The file has been seen being downloaded from banner.grandreefcasino.com.

File name:

casinosetup.exe

Publisher:

Playtech (signed by Playtech Software Ltd.)

Product:

Playtech Software Installer

Description:

Grand Reef Online Casino

Version:

13.2.11.0

MD5:

40f4c26303c0eb73ac7c7e340e04b8da

SHA-1:

45e47a3ea522012a51cacc209dc8b62b7df4c38d

SHA-256:

c5fd7f040520d3e56e182cbc41a75c080a0c9147955b218c012828b9c833cd7e

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/24/2024 12:31:31 PM UTC (today)

Scan engine

Detection

Engine version

Vba32 AntiVirus

Downloader.AdLoad

3.12.26.4

File size:

275.9 KB (282,560 bytes)

Product version:

13.2.11.0

Original file name:

CasinoDownloader2.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Digital Signature

Signed by:

Playtech Software Ltd.

Authority:

VeriSign, Inc.

Valid from:

10/21/2014 7:00:00 PM

Valid to:

10/21/2017 6:59:59 PM

Subject:

CN=Playtech Software Ltd., O=Playtech Software Ltd., L=Douglas, S=Isle Of Man, C=IM

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

4BCCAA7A2D896D3B2B5214ECAEE92EEA

File PE Metadata

Compilation timestamp:

1/17/2014 4:14:13 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

6144:fCv889gvgQ33+UiKRXuJ1QDLLuPxx4OpqC3MjlNVs1M0FZGuLa/:6v/gg6zhXiQDfGxCOpv3ue1ljLa/

Entry address:

0x3533C

Entry point:

B8, 84, E1, 52, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 62, 0F, 50, 7C, D3, DB, F3, F5, 0E, 35, AF, 9E, 28, F8, A2, F1, 2F, 90, DA, CD, 96, 31, E7, 2F, C8, 6C, 40, 5D, C1, 1D, 72, E2, 79, 34, 8C, 06, 19, 51, 03, 5C, FC, 8D, 2B, 99, 6F, FD, A4, 74, 47, 85, 69, 9E, 68, 87, 6C, 22, 40, 81, FF, 8C, A3, 01, C8, D9, 28, 5C, FE, E5, 20, 19, 5B, D4, 6A, A0, 53, F9, 6E, FA, 4F, 18, 20, 16, 71, 50, 46, 91, 76, 78, DD, D0, B6, 0B, 1E... 
[+]

Entropy:

7.8819

Packer / compiler:

PECompact v2

Code size:

338 KB (346,112 bytes)

Program Uninstaller

Program name:

Grand Reef Online Casino

Uninstall string:

"C:\Grand Reef Online Casino\_CasinoSetup (2).exe" /uninstall

The file casinosetup.exe has been seen being distributed by the following URL.

http://banner.grandreefcasino.com/.../SetupCasino.exe

Scan casinosetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.