home

Couatl.exe

Couatl Scripting Engine for FSX/ESP

VIRTUALI SAS DI COLAPICCHIONI UMBERTO & C

Publisher:
Gamecentric  (signed by VIRTUALI SAS DI COLAPICCHIONI UMBERTO & C)

Product:
Couatl™ Scripting Engine for FSX/ESP

Version:
3.0.0.3119

MD5:
76d8dff2c9bf56a72b9506f74502a255

SHA-1:
64abdc8e3addc2c8602989c546068e7a0e6b773a

SHA-256:
99f862da838f5a666bcec74487f3b6098d39ce40a56d1ba74c42c3a36f8e8156

Scanner detections:
5 / 68

Status:
Clean  (5 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/24/2024 9:57:35 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.6979

ESET NOD32
Detection.Undefined
10.7.0.302.0

F-Prot
W32/Threat-HLLIE-based
v6.4.7.1.166

Trend Micro House Call
Suspicious_GEN.F47V0124
7.2.46

VIPRE Antivirus
Trojan.Win32.Packer.EnigmaProtector1.1X-1.3X
42102

File size:
7.5 MB (7,881,968 bytes)

Product version:
3.0

Copyright:
Copyright © 2015 Gamecentric

Original file name:
Couatl.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\fsdreamteam\couatl\couatl.exe

Digital Signature
Signed by:
VIRTUALI SAS DI COLAPICCHIONI UMBERTO & C

Authority:
COMODO CA Limited

Valid from:
11/15/2012 12:00:00 AM

Valid to:
11/15/2016 11:59:59 PM

Subject:
CN=VIRTUALI SAS DI COLAPICCHIONI UMBERTO & C, O=VIRTUALI SAS DI COLAPICCHIONI UMBERTO & C, STREET=via Dostoevskij 2, L=San Giuliano Milanese, S=MI, PostalCode=20098, C=IT

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0A57F8B0F30E362EEC55BACB27F0F041

File PE Metadata
Compilation timestamp:
7/16/2015 10:23:32 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
196608:EZxIviD288DxyP/mwGS7KzjFlEdoAm/5cwaVOrcUr8Qe:HI288DY/HGrXAd4/2Qr78Qe

Entry address:
0xECEC20

Entry point:
EB, 08, 00, 3C, 49, 00, 00, 00, 00, 00, 60, E8, 00, 00, 00, 00, 5D, 81, ED, 10, 00, 00, 00, 81, ED, 20, EC, EC, 00, E9, 04, 00, 00, 00, 2F, 5E, 14, DB, B8, 20, EC, EC, 00, 03, C5, 81, C0, 4C, 00, 00, 00, B9, 83, 05, 00, 00, BA, B5, 36, AD, 84, 30, 10, 40, 49, 0F, 85, F6, FF, FF, FF, E9, 04, 00, 00, 00, 45, 23, C3, 8C, 3E, 78, 3E, 3C, 89, B5, B5, B5, 34, 74, 4D, B5, B5, B5, B6, 78, 0D, B3, B5, B5, B5, 0F, 9D, B5, B5, B5, 42, 57, B6, 7D, 3E, 34, B9, B5, B5, B5, B6, 70, E5, E5, DD, 95, 48, 99, B5, DD, 48, 5B...
 
[+]

Entropy:
7.9904  (probably packed)

Code size:
1.4 MB (1,508,352 bytes)

Scan Couatl.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.