» metro 2033 trainer.exe
Overview
Analysis
File Details

metro 2033 trainer.exe

Metro 2033 Trainer

CheatHappens

The executable metro 2033 trainer.exe has been detected as malware by 7 anti-virus scanners.

File name:

Publisher:

CheatHappens

Product:

Metro 2033 Trainer

Version:

1.0003

MD5:

49cb05f02d677a86cfe049c0e17439bf

SHA-1:

d6f0288724afdab38b16d4408166bd22430ccda7

SHA-256:

211b61200b59563938ebae52f6d1ade92dfbf82cdb5f118b535eb5f08e2f2dd7

Scanner detections:

7 / 68

Status:

Malware

Analysis date:

4/23/2024 2:29:35 PM UTC (today)

Scan engine

Detection

Engine version

Baidu Antivirus

Trojan.Win32.GameHack

4.0.3.14822

ESET NOD32

Win32/GameHack (variant)

8.9931

Fortinet FortiGate

W32/GameHack.F!tr

8/22/2014

F-Prot

W32/GameHack.E4.gen

v6.4.7.1.166

K7 AntiVirus

Trojan

13.1712374

McAfee

Artemis!49CB05F02D67

5600.7030

Norman

CheatEngine.AB

11.20140822

File size:

625 KB (640,000 bytes)

Product version:

16144

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

File PE Metadata

Compilation timestamp:

3/20/2010 4:29:20 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.50

CTPH (ssdeep):

12288:ENUTHrDgwqTsi4FrSwhfMH4V3UoU6v5CJewQYgORq6JBV1Ls2LMpB8aUH0:7LD4T/WuyfMYVEohMQwMOM6JBV1Ls2wO

Entry address:

0x1000

Entry point:

68, A8, 04, 00, 00, 68, 00, 00, 00, 00, 68, C0, C0, 48, 00, E8, 9C, 90, 00, 00, 83, C4, 0C, 68, 00, 00, 00, 00, E8, 95, 90, 00, 00, A3, C4, C0, 48, 00, 68, 00, 00, 00, 00, 68, 00, 10, 00, 00, 68, 00, 00, 00, 00, E8, 82, 90, 00, 00, A3, C0, C0, 48, 00, 68, 64, 94, 48, 00, 8F, 05, C8, C0, 48, 00, E8, 81, D6, 00, 00, E8, 87, D5, 00, 00, E8, 57, CD, 00, 00, E8, AA, BA, 00, 00, E8, 5F, B2, 00, 00, E8, 32, B1, 00, 00, E8, 72, AB, 00, 00, E8, 3E, A6, 00, 00, E8, 89, A4, 00, 00, E8, 7D, 99, 00, 00, E8, 3C, 98, 00... 
[+]

Entropy:

7.8030

Packer / compiler:

PKLITE32, 0x1.1

Code size:

119.5 KB (122,368 bytes)

Remove metro 2033 trainer.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.