» frfootballchallenge10.exe
Overview
Analysis
File Details
Downloads (15)

frfootballchallenge10.exe

Football Challenge 2010 (FR)

Greentube Internet Entertainment Solutions AG

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from lb.cdn.m6web.fr and multiple other hosts.

File name:

Publisher:

Greentube AG (signed by Greentube Internet Entertainment Solutions AG)

Product:

Football Challenge 2010 (FR)

Version:

MD5:

64d080c41ba781171b89e002e2768670

SHA-1:

ceec42d9b6aa66922f71645407d62f80940bd4ae

SHA-256:

288e76e51a6c05976c6b19d709f0d1fc701d70e9e09322804acec6d5e310db18

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/26/2024 6:02:19 AM UTC (today)

File size:

43.6 MB (45,685,080 bytes)

Greentube AG

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\frfootballchallenge10.exe

Digital Signature

Signed by:

Greentube Internet Entertainment Solutions AG

Authority:

VeriSign, Inc.

Valid from:

10/11/2007 2:00:00 AM

Valid to:

10/11/2010 1:59:59 AM

Subject:

CN=Greentube Internet Entertainment Solutions AG, OU=IT, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Greentube Internet Entertainment Solutions AG, L=Vienna, S=Vienna, C=AT

Issuer:

CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

30A476CA9CAC266D0AEF8262307CB550

File PE Metadata

Compilation timestamp:

6/6/2009 11:41:59 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

786432:d0xEmD7xEyOSbuQLtJX1rESldumMeiO0tCGKLkwXWv+wDne:+xEmD7xHOSiQLhrESrkB2LxQ+0ne

Entry address:

0x30FA

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, EC, 42, 00, E8, F1, 2B, 00, 00, A3, 64, EB, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 8F, 42, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, E3, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 40, 43, 00, 50, 57, E8, 92, 28, 00, 00... 
[+]

Packer / compiler:

Nullsoft install system v2.x

Code size:

23.5 KB (24,064 bytes)

The file frfootballchallenge10.exe has been seen being distributed by the following 15 URLs.

http://lb.cdn.m6web.fr/d/c/a/e88a129a861c94c7273cf84a8f0875a5/5893b3b2/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://gsf-cf.softonic.com/cee/c42/.../file?SD_used=0&channel=WEB&fdh=no&id_file=70465&instance=softonic_fr&type=PROGRAM&Expires=1481195336&Signature=g1l5qrEXgLA5N40W9asR2zcpvtrDJPE4dtF5GhzNSN5lPu4tx-009B03hYuHFdJIORPOanuUj8EnKbD8LiR8PL61J7~F-6ResRtJ5BHrO-C7P4EVXaj7kWj2OKX9tI24WgKr3bIZOvE2TbB5kUwwlrxz1QKJSsCWpvnR5tVKiac_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FRFootballchallenge10.exe

http://lb.cdn.m6web.fr/d/c/a/afa0a8ce782b85885624ab659bd3a02b/57e8fca7/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://gsf-cf.softonic.com/cee/c42/.../file?SD_used=0&channel=WEB&fdh=no&id_file=70465&instance=softonic_fr&type=PROGRAM&Expires=1483749781&Signature=M5LZRvBWbfnOP4py4XmogGsSOLn1vpIptKqAKM~qKsaqvToYFL1PsckFNkKzvSz0TR8mrhsNj9jPEtEmlYVDnAwt1B0eQ5AalMOcqClcc-HHL02c0JlDOYbifFWrxMhpPrXANpe2ZZQ2OtYtUhokvVcZIodxFbulw8zlmEjEaug_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FRFootballchallenge10.exe

http://lb.cdn.m6web.fr/d/c/a/8a611d9648a36871b013b9ed3cc3233f/57140bf4/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://lb.cdn.m6web.fr/d/c/a/8e8173766c581f159eda3444452a9cf6/57dd5baf/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://gsf-cf.softonic.com/cee/c42/.../file?SD_used=0&channel=WEB&fdh=no&id_file=70465&instance=softonic_fr&type=PROGRAM&Expires=1481779909&Signature=cjXVvfwQLnU3HBoMgXG5izCbTiCoqZVkIKT5zj9aR~Wj~1U6toLLDmJRPCTdMRjUAp9S~2wTLTH95NayJeJhEdCdgGjuQF0mFx7byMGYilg7BqLgi-Yx4ZMzvYzkN9ncSyZmTBWdIaD8JGs5KSqqI1h7DELS6e09MwJepl2XVAE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FRFootballchallenge10.exe

http://gsf-cf.softonic.com/cee/c42/.../file?SD_used=0&channel=WEB&fdh=no&id_file=70465&instance=softonic_fr&type=PROGRAM&Expires=1478034494&Signature=fftkUefCGPA9I7IFHDGGo2etnInMwuH5iV2T2zwnGqnRtKjmxz3stXzIEtv-xzQXgyDiTRwGmRTyHuK4AUXJwKuWLQajckS2pikH011NOdSL5xlI6SHKIwH1Ea6xaSPVA6Or~asamHSqSi66~n5FYHVZVAdeZ73yBSbioUzOKts_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FRFootballchallenge10.exe

http://gsf-cf.softonic.com/cee/c42/.../file?SD_used=0&channel=WEB&fdh=no&id_file=70465&instance=softonic_fr&type=PROGRAM&Expires=1472613812&Signature=Qt31vwri770UCd-WD45Dpawbmze0B4~qsrYmMbovdIf3MBDeuY1Hlvls-irdgmyZmBH-Myr3tua1eH~dm3J8B7wy~jCrt~RcqA6l4FXGva5MxTZpHHDHa2vrXITmHS-FLJXEWUhVCJhQTA01x37HRLUEhdrTL7MzZ2o6-ye0t~c_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FRFootballchallenge10.exe

http://lb.cdn.m6web.fr/d/c/a/24f268f7bd5d03e0a6fab6c992916085/5765786a/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://lb.cdn.m6web.fr/d/c/a/512a6f3a299d4d4c17ce9d783fb1acba/576485f1/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://lb.cdn.m6web.fr/d/c/a/c2b2460ca0647eddde18d51b47cd53a2/57627752/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://lb.cdn.m6web.fr/d/c/a/479864bd0cd8f007190aba21b81306b5/570a80d1/soft/.../football-challenge-08_football_challenge_10_francais_241632.exe

http://gsf-cf.softonic.com/cee/c42/.../file?SD_used=0&channel=WEB&fdh=no&id_file=70465&instance=softonic_fr&type=PROGRAM&Expires=1445568155&Signature=G17Gjy-C8BB9yFebS439Ny6OULE2F~thj0ReHOlO3uIyvwfJ5O6vHv2AnL3cwXEfJzB8bgUGsHh~rgUPo~UsTcRCKqzSkg7V9aVKh4fwZnjZ~PnF3OkisI-~BI72HlNhDSVGJzTxokWhuxJXDYsoGyxoPisHMMDwGzke9W8MuOs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FRFootballchallenge10.exe

http://gsf-cf.softonic.com/cee/c42/.../file?SD_used=0&channel=WEB&fdh=no&id_file=70465&instance=softonic_fr&type=PROGRAM&Expires=1447810996&Signature=DDs0tO-PF5VQUhgj4A3HlA5PTWzY2iGIG2GrdcFcpMczkZ6cV-nYOWgWPPkrPYJZqdbOAlCZ1J2jlvpqWwg0mipPKQp7Q7TWBR4Cdy2lAeXPzIcnOcUMZOBTievra2FCBPKvdWCTUV4fc8I5bvOnrBQpT3N4lw5RFqQkZ43drQw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=FRFootballchallenge10.exe

Scan frfootballchallenge10.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.