home

Goodgame Empire Hack.exe

http://roejan.com/goodgame-empire-hack/

E

The executable Goodgame Empire Hack.exe, “Goodgame Empire Hack” has been detected as malware by 4 anti-virus scanners. The file has been seen being downloaded from download1833.mediafire.com.
Publisher:
E

Product:
http://roejan.com/goodgame-empire-hack/

Description:
Goodgame Empire Hack

Version:
1.0.0.0

MD5:
a07dcac40b667cec9b76bf844248ddc4

SHA-1:
c46836258d9dea889fab2bd6b4adc14da11edb5c

SHA-256:
9f0908f019a21d6b53f63d99722c7e07ff86ea9d31b572649a02fead116e5c39

Scanner detections:
4 / 68

Status:
Malware

Analysis date:
5/8/2024 7:33:21 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Trojan.MSIL.FakeHack
4.0.3.15426

Comodo Security
UnclassifiedMalware
20423

ESET NOD32
MSIL/Hoax.FakeHack.JN (variant)
9.10907

Qihoo 360 Security
Malware.QVM03.Gen
1.0.0.1015

File size:
2.3 MB (2,370,560 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © E

Original file name:
Goodgame Empire Hack.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\goodgame empire hack.exe

File PE Metadata
Compilation timestamp:
4/18/2013 7:06:33 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:S7U+jZVEhVExwFrrnpglVEgh3vVEhVEmULFMTK859iPVEhVE4lVEjI:cQ4orlgM23a4d6V9i64zk

Entry address:
0x2015BE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 29, 36, 70, 51, 00, 00, 00, 00, 02, 00, 00, 00, A7, 00, 00, 00, 1C, 20, 20, 00, 1C, FA, 1F, 00, 52, 53, 44, 53, A8, 8A, 07, 92, 56, F5, 22, 46, AE, F1, E5, CA, C1, CE, 41, EC, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 41...
 
[+]

Entropy:
1.8712

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
2 MB (2,094,592 bytes)

The file Goodgame Empire Hack.exe has been seen being distributed by the following URL.

http://download1833.mediafire.com/642538ld1aeg/.../Goodgame Empire Hack.exe

Remove Goodgame Empire Hack.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.