home

faceoffmax.exe

Face Off Max

eCode Sky Network Technology Co., Ltd.

The application faceoffmax.exe by eCode Sky Network Technology Co. has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
CoolwareMax.com  (signed by eCode Sky Network Technology Co., Ltd.)

Product:
Face Off Max

Version:
3.1.0.2

MD5:
c98c35247aa00a969ec3c294fb2aad7a

SHA-1:
7a2b22364972d382a7bf12590a94d09d854e2af8

SHA-256:
a2fb30380cc3f60a54f5babf9b9d328104f8a5af4045c8e55dab8afc85e83b5b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 10:33:25 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.eCodeSkyNetworkTechnologyCo
16.2.11.18

File size:
3.7 MB (3,856,216 bytes)

Product version:
3.1.0.2

File type:
Executable application (Win32 EXE)

Language:
engleski (Sjedinjene Države)

Digital Signature
Signed by:
eCode Sky Network Technology Co., Ltd.

Authority:
WoSign, Inc.

Valid from:
2/1/2008 1:00:00 AM

Valid to:
2/1/2013 12:59:59 AM

Subject:
CN="eCode Sky Network Technology Co., Ltd.", O="eCode Sky Network Technology Co., Ltd.", STREET="159, Kehai Blvd.,Fuzhang Park, Tongzhou District, Beijing", L=Beijing, S=Beijing, PostalCode=100000, C=CN

Issuer:
CN=WoSign Code Signing Authority, O="WoSign, Inc.", C=US

Serial number:
00BB9E5872C907F4BB51ED8D5898FCDBF4

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:u0u7RGTHgyviQiRqxYMFICSXdGPni6vzTPpwMRn:gRGTHliS2ePnyMB

Entry address:
0x2CD904

Entry point:
55, 8B, EC, 83, C4, F0, B8, 5C, D1, 6C, 00, E8, 08, 9F, D3, FF, 8B, 15, 9C, 93, 6D, 00, 33, C9, A1, B4, 6E, 6C, 00, E8, 5A, 6D, EF, FF, E8, 85, 75, D3, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.8 MB (2,935,296 bytes)

Remove faceoffmax.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.