» di-riptide_23+tr-lng_v1.4.1.1.13x2.exe
Overview
Analysis
File Details

di-riptide_23+tr-lng_v1.4.1.1.13x2.exe

Dead Island: Riptide - 26 April 2013 - Updated - 20 Sep 2013 - Trainer by LinGon - v1.4.1.1.13

LinGon

The application di-riptide_23+tr-lng_v1.4.1.1.13x2.exe has been detected as a potentially unwanted program by 19 anti-malware scanners.

File name:

Publisher:

LinGon

Product:

Dead Island: Riptide - 26 April 2013 - Updated - 20 Sep 2013 - Trainer by LinGon - v1.4.1.1.13

Description:

A LinGon Trainer

Version:

1.02.0003

MD5:

5e6bc736b550a0d0588bbfec01ae88cf

SHA-1:

bd0d3aa270cc481518afdafc0555b5105d30b460

SHA-256:

dbf189a258a8280223199100cda68eb3f3a321321087c9fcf7cb42c8261b55b5

Scanner detections:

19 / 68

Status:

Potentially unwanted

Analysis date:

4/25/2024 8:06:50 PM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.VMProtect

7.1.1

Avira AntiVirus

TR/Black.Gen2

7.11.164.42

avast!

Win32:Trainer-F [PUP]

2014.9-141101

AVG

Win32/Blacked

2015.0.3304

Baidu Antivirus

Trojan.Win32.VMProtect

4.0.3.14111

Bkav FE

HW32.CDB

1.3.0.4959

Comodo Security

UnclassifiedMalware

18993

ESET NOD32

Win32/Packed.VMProtect.ABD (variant)

8.10160

Fortinet FortiGate

W32/VMProtBad.A!tr

11/1/2014

IKARUS anti.virus

Trojan.Win32.VMProtect

t3scan.1.6.1.0

McAfee

Artemis!5E6BC736B550

5600.6960

Norman

Troj_Generic.URVAC

11.20141101

Panda Antivirus

Trj/CI.A

14.11.01.02

Qihoo 360 Security

Win32/Trojan.9a8

1.0.0.1015

Rising Antivirus

PE:Trojan.Win32.Generic.16EF95BE!384800190

23.00.65.141030

Sophos

Mal/VMProtBad-A

4.98

Trend Micro House Call

TROJ_GEN.R0CBC0EG314

7.2.305

Trend Micro

TROJ_GEN.R0CBC0EG314

10.465.01

VIPRE Antivirus

Trojan.Win32.Generic.pak!cobra

31654

File size:

2.8 MB (2,945,024 bytes)

Product version:

1.02.0003

LinGon

Original file name:

DI-Riptide_23+Tr-LNG_v1.4.1.1.13_UDDF.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\di-riptide_23+tr-lng_v1.4.1.1.13x2\di-riptide_23+tr-lng_v1.4.1.1.13x2\di-riptide_23+tr-lng_v1.4.1.1.13x2.exe

File PE Metadata

Compilation timestamp:

6/23/2014 7:12:51 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

49152:5pywayKpJZNwV4vBLREnz49zn85+zd7vWUMW08B8mAVsQR0eWpT56C0GKb4A:5wweZNwVAEnzOb85+zd7vWU/0K8nD2DS

Entry address:

0x68F0FF

Entry point:

60, C7, 44, 24, 1C, 59, 81, 05, AE, E9, 02, 31, 2C, 00, CA, 74, E2, 3B, 85, 9A, 2C, 7B, 51, 11, 7F, E3, D5, 79, 27, 2F, DF, A3, A4, 26, 4A, E8, 48, E2, EB, 77, 81, B1, 11, 4D, 96, F0, 90, C2, 81, 9D, BD, 48, 2C, 4B, FA, 78, CA, 74, B9, 9D, A4, 90, 83, 97, FE, A5, 08, 4B, BD, 55, 0A, 24, 23, FF, 90, 36, 27, 6D, F5, A8, BE, DC, 70, 7F, 24, 59, 76, 5B, F7, 47, 0C, CA, 4A, DF, BE, 31, 01, F6, F5, 71, 30, 0E, 55, 8F, F0, D9, AA, 61, C3, 77, 22, 1C, 1E, 42, 0C, BB, C7, E6, 64, 03, 4F, 7E, 18, 49, 8D, 3C, 1E, 7E... 
[+]

Entropy:

7.8962 (probably packed)

Code size:

3.5 MB (3,695,616 bytes)

Remove di-riptide_23+tr-lng_v1.4.1.1.13x2.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.