home

FeedingFrenzy.exe

Feeding Frenzy

PopCap Games

Publisher:
PopCap Games  (signed and verified)

Product:
Feeding Frenzy

Version:
5, 7, 18, 1

MD5:
6ec92cf42c9c46426d1baf91ad9aa09e

SHA-1:
7d9f40a729da5d120d668c678de5fbe09bd05768

SHA-256:
cb89a324be960512a80923d2ed2fa1121db1f877a4b8ffa05c66b40a07aca77b

Scanner detections:
11 / 68

Status:
Clean  (11 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/26/2024 2:54:47 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Patched-JI
2014.9-160214

AVG
Win32/Slugin.A
2017.0.2833

Clam AntiVirus
Trojan.Spy-59563
0.98/21322

Dr.Web
Win32.Wplugin.2
9.0.1.045

ESET NOD32
Win32/Slugin.A virus
10.7.0.302.0

F-Prot
W32/Slugin.B
v6.4.6.5.141

McAfee
Virus.W32/Wplugin
5600.6489

Microsoft Security Essentials
Threat.Undefined
1.213.4702.0

NANO AntiVirus
Trojan.Win32.Renaz.drhqz
0.24.0.52848

Sophos
Virus 'W32/Slugin-A'
5.22

VIPRE Antivirus
Threat.4314870
46748

File size:
2.6 MB (2,674,120 bytes)

Product version:
5, 7, 18, 1

Copyright:
Copyright (C) 2004

Original file name:
FeedingFrenzy.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\popcap games\feeding frenzy deluxe\feedingfrenzy.exe

Digital Signature
Signed by:
PopCap Games

Authority:
VeriSign, Inc.

Valid from:
8/31/2006 5:00:00 PM

Valid to:
9/21/2009 4:59:59 PM

Subject:
CN=PopCap Games, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=PopCap Games, L=Seattle, S=Washington, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3C61DF38D5BB3836A8B44B985C504479

File PE Metadata
Compilation timestamp:
6/19/2008 10:31:20 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:7mJowEWZgzHblFpaVQM//N3PwGH4nLSWy7Z97A6dEilhUH5sG1:7BwEWZUHblFpSQMRwGxWidE6G1

Entry address:
0xE443E

Entry point:
E8, CE, EA, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 83, EC, 50, 8B, 5C, 24, 58, C7, 45, B0, 26, 00, 00, 80, C7, 45, B4, 00, 00, 00, 00, C7, 45, B8, 00, 00, 00, 00, C7, 45, BC, 00, 00, 00, 00, C7, 45, C0, 00, 00, 00, 00, 8D, 45, B0, 8B, 2B, 8B, 73, 18, 64, 3B, 35, 00, 00, 00, 00, 74, 12, 53, 56, 6A, 00, 50, 68, 96, 44, 4E, 00, 56, E8, 7E, 0A, 02, 00, 5E, 5B, 83, FE, 00, 74, 30, 8D, 43, 20, 50, E8, 39, EC, 00, 00, 0B, C0, 74, 16, 8B, 43, 20, 3D, 30, 32, 43, 56, 75, 0C, 8B, 43, 24, 0B, C0, 74, 12, 53, FF, D0...
 
[+]

Entropy:
6.8478

Code size:
1.1 MB (1,167,360 bytes)

Scan FeedingFrenzy.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.