home

growtopia fake level editor.exe

ConsoleApplication23

This is a setup program which is used to install the application. The file has been seen being downloaded from www65.zippyshare.com.
Product:
ConsoleApplication23

Version:
1.0.0.0

MD5:
7b069f1778b0b30627ee21e294ba2194

SHA-1:
8d9913a574296c8020f7e720ef55874cb5c155cb

SHA-256:
e21a255489b05858cf5651bd880439c5be06a915a737c0ebd7b930c8da945f6d

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
5/11/2024 1:40:48 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
MSIL/Packed.Confuser.J suspicious application
8.0.319.0

File size:
37 KB (37,888 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2016

Original file name:
ConsoleApplication23.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

File PE Metadata
Compilation timestamp:
7/5/2016 6:57:06 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:j5Zsx2HykNSk5LFO+mkS2q7Iqyve4z67Nd/6AmsW7QGxI8yyyAlLggPME1AAR86+:j5ekNB5BsgAKe4zuoK8j571AAR7i6Jc

Entry address:
0x6C9E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
19.5 KB (19,968 bytes)

The file growtopia fake level editor.exe has been seen being distributed by the following URL.

http://www65.zippyshare.com/d/WBnn0LuW/.../Growtopia Fake Level Editor.exe

Scan growtopia fake level editor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.