Client.exe

Blade & Soul

Tencent Technology(Shenzhen) Company Limited

Scan Client.exe - Powered by Reason Core Security
Publisher:
NCsoft  (signed by Tencent Technology(Shenzhen) Company Limited)

Product:
Blade & Soul

Description:
Blade & Soul by bloodlust

Version:
3, 0, 99, 4483

MD5:
1ff4d5d347f8809a2093127f05a5334f

SHA-1:
7e7d801660f4eaabbdadd9536b2c7e7327d3e835

SHA-256:
4b8672f93a1bc17de3bfd2e644496bc483b8ca46a48fd93680a56b6e2873eaf3

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/8/2016 11:13:14 PM UTC  (today)

Scan engine
Detection
Engine version

Vba32 AntiVirus
suspected of Malware-Cryptor.General.5
3.12.26.0

File size:
49.8 MB (52,168,296 bytes)

Product version:
3, 0, 99, 4483

Copyright:
Copyright (C) 2011 NCsoft Corporation. All Rights Reserved.

Original file name:
Client.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\ìúñ¶óîï·\½£áé_ìúñ¶\bin\client.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
1/17/2013 2:00:00 AM

Valid to:
2/17/2016 1:59:59 AM

Subject:
CN=Tencent Technology(Shenzhen) Company Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Tencent Technology(Shenzhen) Company Limited, L=shenzhen, S=guangdong, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7170BD93CF3F189AE6452B514C49340E

File PE Metadata
Compilation timestamp:
5/30/2014 12:43:03 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
393216:ANwQDnGS9L1TTLBo7VXlXsCFTAnS0PbkKiEnIiIYTMAK69pYwOfejPffXr:ANwQDqhsMTwS0PbkcIiIYTztnXP

Entry address:
0x2C1017B

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, 40, 00, 00, 61, E9, 7D, 4C, 02, 03, E9, 13, 0E, 00, 00, 9C, 60, FF, 74, 24, 24, 8F, 45, 00, 9C, 88, 5C, 24, 08, 68, F3, EE, 05, F4, 9C, 8D, 64, 24, 34, E9, 0B, 07, 02, 03, 9F, 80, C9, E8, 8B, 45, 00, D2, E9, D2, E1, 9C, 57, 8A, 4D, 04, 66, 0F, A3, C1, 38, CB, 83, ED, 02, 60, F9, F9, 88, 04, 24, D3, E0, 68, 75, AA, A3, F4, 9C, 89, 45, 04, 9C, 9C, 9C, 8F, 44, 24, 34, E8, 8E, 05, 00, 00, 9C...
 
[+]

Packer / compiler:
ASPack v2.12

Code size:
92.2 MB (96,710,656 bytes)

Scan Client.exe - Powered by Reason Core Security