home

GAMEBOOSTER.EXE

Chris-PC Game Booster

Chris P.C. srl

The application GAMEBOOSTER.EXE by Chris P.C. srl has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Chris P.C. srl  (signed and verified)

Product:
Chris-PC Game Booster

Version:
3.0.0.0

MD5:
5bd1796da2249b466887799d442fdffd

SHA-1:
5e700a639cbbf93a7c3f3c40b38982aa9e17b4e6

SHA-256:
3e12f5067f27c36586b700afc056f376d160621a327e0382c45508c99f23dd58

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 11:19:25 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.ChrisPCsrl (M)
16.1.28.10

File size:
2.1 MB (2,214,904 bytes)

Product version:
3.0.0.0

Copyright:
Copyright © 2015 Chris P.C. srl

Original file name:
GAMEBOOSTER.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\chris-pc game booster\gamebooster.exe

Digital Signature
Signed by:
Chris P.C. srl

Authority:
COMODO CA Limited

Valid from:
1/8/2013 3:30:00 AM

Valid to:
1/9/2016 3:29:59 AM

Subject:
CN=Chris P.C. srl, O=Chris P.C. srl, STREET=Nicolae Cristea 25/8, L=Cluj-Napoca, S=Cluj, PostalCode=400184, C=RO

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
319A47CF0068FDF122C7AC1163A961B8

File PE Metadata
Compilation timestamp:
2/14/2015 5:59:58 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:WKz30r2Wy5/4Jb4jdBwSQymAncF8b8sfD0vQUkcqxZPm4f5xObVbTfyw2vn9nG1:HSSYAncF8bVflXeSxE9Tfyvn9nc

Entry address:
0x16D8E0

Entry point:
55, 8B, EC, B9, 08, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, B8, A4, 51, 56, 00, E8, D9, C9, E9, FF, 33, C0, 55, 68, E3, DC, 56, 00, 64, FF, 30, 64, 89, 20, BB, 02, 00, 00, 80, B8, 7C, C8, 57, 00, 8B, 15, B8, 68, 57, 00, 8B, 12, E8, B8, 91, E9, FF, 6A, 00, 6A, 00, 8D, 45, EC, 50, B9, FC, DC, 56, 00, 8B, 15, 7C, C8, 57, 00, 8B, C3, E8, 52, 5C, F8, FF, 8B, 55, EC, B8, 80, C8, 57, 00, E8, 91, 91, E9, FF, 83, 3D, 80, C8, 57, 00, 00, 75, 40, E8, 73, 85, EA, FF, 83, C4, F8, DD, 1C, 24, 9B, E8, BB, FC, FE...
 
[+]

Entropy:
6.5875

Developed / compiled with:
Microsoft Visual C++

Code size:
1.4 MB (1,495,040 bytes)

Remove GAMEBOOSTER.EXE - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.