home

Overwatch - InstallShield Wizard.exe

InstallShield

This is a setup and installation application. The file has been seen being downloaded from 46.105.39.38 and multiple other hosts.
Product:
InstallShield

Version:
1.0.0.0

MD5:
dfd5aec0aab8e10e1fb4cf24f1b20587

SHA-1:
617546bcbe91371acb1ee1b0da87922816d3d87f

SHA-256:
099bf37bdc0e7500dbb90c5653543bc1c2b8a5d2a96a3133b923cb0db5adcf80

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
8/3/2025 9:25:09 AM UTC  (today)

File size:
10.7 MB (11,197,952 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2015

Original file name:
Overwatch - InstallShield Wizard.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\overwatch - installshield wizard.exe

File PE Metadata
Compilation timestamp:
6/14/2016 5:09:30 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
196608:SEAPle9sM3l0v1AuaFSD3mS80qwCtYh5wZjzEl4Ws8/XMej++RO:SNPgiMNfFSD2OvCtYh58Kc8J

Entry address:
0xA9FE1E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9722

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
10.6 MB (11,132,928 bytes)

The file Overwatch - InstallShield Wizard.exe has been seen being distributed by the following 4 URLs.

http://46.105.39.38/.../Overwatch - InstallShield Wizard.exe

https://dl.dropboxusercontent.com/content_link/.../file?dl=1

https://dl.dropboxusercontent.com/content_link/.../file?dl=1

http://install-game.com/Overwatch-PC-DOWNLOAD-GAME

Scan Overwatch - InstallShield Wizard.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.