home

gothic_3_fsg_ee_patch_v2_0.exe

{code:GetAppName}

JoWooD Entertainment AG

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from s10811.chomikuj.pl and multiple other hosts.
Publisher:
JoWooD Entertainment AG

Product:
{code:GetAppName}

Description:
Gothic 3 Forsaken Gods Enhanced Edition

Version:
2.0.17414.16

MD5:
2d11d113a028d5a2453efead345da127

SHA-1:
5cfdbfd8eda91b8d2145f9ff1a9e92d9d6cc6d53

SHA-256:
f03e15a453c745f96b3eea08427429179a40f2abbcd9d3937e02bd678721da58

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 10:37:03 PM UTC  (today)

File size:
1.5 GB (1,560,490,438 bytes)

Product version:
v2.0.16

Copyright:
(c) 2011 Gothic 3 FSG Community Patch Team (Knights of the 12th chalice)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\gothic_3_fsg_ee_patch_v2_0.exe

File PE Metadata
Compilation timestamp:
2/9/2011 1:43:39 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
25165824:JN9Yh5zDtfX4gIzW/jW0l2V03cbrsHgVWu3+lUE11yLZ3V92ic76MKN9YdweYbom:ZYnxh+gLHg1OlT1yxfo6MKwdtS06z8gX

Entry address:
0x16478

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, B0, 52, 41, 00, E8, AC, 03, FF, FF, 33, C0, 55, 68, 45, 6B, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 01, 6B, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 4E, EC, FF, FF, E8, F5, E7, FF, FF, 8D, 55, EC, 33, C0, E8, 7F, 84, FF, FF, 8B, 55, EC, B8, AC, D6, 41, 00, E8, E2, E9, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, AC, D6, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
84 KB (86,016 bytes)

The file gothic_3_fsg_ee_patch_v2_0.exe has been seen being distributed by the following 4 URLs.

http://s10811.chomikuj.pl/File.aspx?e=OnR7xAdIZIkDY9gX2kYUM7Iml4znUtm0b-Zl0kFU_S5pVmMh9c6uvL5ayuD5wQlKkoiT3IxvCJ2_-M2FEBt6FZQmUIhofbTbV8ZQFkeVEkYAOVKYHBrDAR22Ve5oYg6q43SldYgQxr6HhnOZ8BMWHDKAjJ7AnHLFgSV9UsQWvZ5l_0k2VFZ6AtImpfe8Ywp1vwfyK54VlQLJxlz0In4tCw&pv=2

http://www.bytesendclear.com/qJpQvGzAsP aDGrEznaaUb0G9ShSIsSCJzt5vSWC7H4qE9llL7EVcZPe6PjO5vOmKIr5OWD2clD3gHft8LvR0ksV2bQ33bt97HrxRQMbsaHdsi4 iZ3a6TfpwbuXef3iEbvqZ6 x7fYKt8TXe3L2EFTRG4PaUQog7V00hbZ8OrMRY3N_CY9Dr6NGWSOfKrRMwGkI5 mS8KTeeNB8wy95X 1oTnY4tUQL8 tq7Zgi7YFK9zyuwEoXh1XMWl12oTkiNgIs1UDFAoHyn8jb80sUJans8voOF9BkUlVmGY15EqYRya1TrK3Z7HpcwZeQ3NG2P4z5LBJOlPYZcwRWImjoxOANvPA39qIaBQda5E 3wUPfU9UNPbIr_j5PP5Td_ltybr9UC1L55zX2bEHiJRiocu_VE8DR 0jbjF9H6 j2g6gfdCXJvHRq0ECtCfm N8dLaWtAFOv 3rHDhIFU5ygsr1efDlfQ6XjvzA LDLfpZaK3F0YoxkCBYuJAYY3fYB72dDV1C8RJIilSJYyDlNMkIeylwhuJSB1XZxpLufLrKKpFaYCTU0NdFPZoIf eBi27BN dwv88o LmZh2EYoFiMm_c0Rhpi V6gmO DNLqdzn3RW1 9lhguyOqD1J2iua4_WVWKf2-G3IAAORyW0y_4dfFGkecIuLgkAOH7xooBJpwsDE2vkehk2_MokDug9Zlz8q5G8ql2T 0jjjYvyhZ_v17hgzH2Vm0lSwX2XTVjoPlbLtC5wF0IFNX7X_Rgr00ywNKAw0UUC1UvRU=-E

http://www.bytesendclear.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

http://www.worldofgothic.de/download.php?id=1240

Scan gothic_3_fsg_ee_patch_v2_0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.