home

dragons-prophet-final-en-fr-de-win.exe

DragonsProphet-patch6

Solid State Networks I, LLC

This is a setup program which is used to install the application. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.
Publisher:
Infernum  (signed by Solid State Networks I, LLC)

Product:
DragonsProphet-patch6

Version:
3.5.1.1

MD5:
5bae898ebf8646734c70e430a3f79485

SHA-1:
83bd3d70bb4c51ef527415953d96ba2e63a7f26b

SHA-256:
68edb6cf612ce5ee01b576cfa7fc5ff43c377fb823f07a65bcfb2ea86b975052

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 6:11:05 PM UTC  (today)

File size:
1.4 MB (1,435,416 bytes)

Product version:
1.0.0.4

Copyright:
Copyright © Solid State Networks

Original file name:
host.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States d'America)

Common path:
C:\users\{user}\downloads\dragons-prophet-final-en-fr-de-win.exe

Digital Signature
Signed by:
Solid State Networks I, LLC

Authority:
VeriSign, Inc.

Valid from:
4/18/2012 2:00:00 AM

Valid to:
6/17/2014 1:59:59 AM

Subject:
CN="Solid State Networks I, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Solid State Networks I, LLC", L=Tempe, S=Arizona, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
70DE64CB8537F3F721FA3D31A30CE736

File PE Metadata
Compilation timestamp:
8/24/2013 12:05:04 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:EBnsF/CGEY9xXE1zldBO6FmV3S3QnmldHEbQfzyej+7FuMT4wtcYzNp45h4RlEyx:4uCGEY9FcdDok3Q5WyrBtZv4glEyx

Entry address:
0x4E467

Entry point:
E8, E0, 4E, 00, 00, E9, 78, FE, FF, FF, 6A, 0C, 68, E8, 0C, 47, 00, E8, E7, 4C, 00, 00, 8B, 75, 08, 85, F6, 74, 75, 83, 3D, E0, CC, 47, 00, 03, 75, 43, 6A, 04, E8, CA, 50, 00, 00, 59, 83, 65, FC, 00, 56, E8, F2, 50, 00, 00, 59, 89, 45, E4, 85, C0, 74, 09, 56, 50, E8, 13, 51, 00, 00, 59, 59, C7, 45, FC, FE, FF, FF, FF, E8, 0B, 00, 00, 00, 83, 7D, E4, 00, 75, 37, FF, 75, 08, EB, 0A, 6A, 04, E8, B6, 4F, 00, 00, 59, C3, 56, 6A, 00, FF, 35, 34, 82, 47, 00, FF, 15, 2C, 31, 46, 00, 85, C0, 75, 16, E8, 3B, 2B, 00...
 
[+]

Code size:
391 KB (400,384 bytes)

The file dragons-prophet-final-en-fr-de-win.exe has been seen being distributed by the following 3 URLs.

http://dw.uptodown.com/dwn/lNBCSO-WHGMo90n7VRimnh9-tJFvBiFD3rcntLaWgt-CpS3n7L2uvHOSyeuhaWWN5rCXaW536Q_7_yWfIvm6-2sng4S_uYI0U3a0U5OWJDk68YslimWVHYY5jj4oU4ml/ytnJOaeuos6fs46VAZ7QaYryOSX5lfkfHYJzj-xe1mzBmq0yImL8FlPKmUvDUP58WOO55EuicxqoJoc7lZvASfdHfN3m4C-pkxvlwXaewr_T1lIF2pa5Jr5Xa-jVyUBO/oKwbCey4RUrGDK5rtVWFTYFc3eU1vUjRbhryZASJ2Zs_sK5AR4UxbsKVlyRhZzk9c95fueBrKXeqQGVwJORXHuEGPNVCdNZu1JF07Vhn81Nn47RFfm3wZ7-374cGng-4/.../

http://dw.uptodown.com/dwn/Lh_Xz4BB-WPUvtFnCyDZc-PeWF0oCaGvNETle7RpMnddgsyI-2bouBy7H4xC3y8t7MGeGDJWHj35xSR3fjHfjKbZl8KxO6_uUiqoyy1vvLV3xn4L-ujet5wwp-i72RTW/.../

http://dw.uptodown.com/dwn/VVKHw3d4wVv1EztsuylAN-qfeSzk0MtwUDyubEPBkTxkJci_GkIBlv5uz0c0A4BPWlAUbjjYJq0L0rFqjS5hVsSvsdkyIg3UQTKS_z5HYqBX-TbFo-tdpENBTjR5zx45/7catF03aLiNrJ_lWOiF4TQ2ra1MPv_h_rVcbqjx9Dh3Ppn4G_OZW6ytNk3al2SP9UoGJBu3guKWiVDBiGrrk6xYoLyz-5hhiSwME_c9LImwWo3GENYmcDwkGcV12saiQ/zdVklnORh80ry2_5xWzSIYi2m8i8d90ma1hwGXnrd5IdtJBfxllxOhXoItK5_QMKWiAQ4ani4tX36BnY5bjILOZfnfhhKksARmRBr144ELF2nMGOvx_Wig5tiFzHhkmQ/.../

Scan dragons-prophet-final-en-fr-de-win.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.