home

rgnlauncher1.0.exe

German Roleplay Community

This is a setup program which is used to install the application. The file has been seen being downloaded from anticheat.revival-gaming.net.
Publisher:
German Roleplay Community  (signed and verified)

MD5:
948589450621ff01796d3c5ea7626ab1

SHA-1:
2da8910bdd23ccb499e54a374b831b41ff46e936

SHA-256:
1e80d4fad4dd23f4ff254f21b7d0f6ee802f554c10822e959e11a06106baaaad

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/19/2024 3:03:36 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.7383

NANO AntiVirus
Trojan.Win32.XPACK.dqsaeb
0.30.26.4437

File size:
3.6 MB (3,750,872 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\programs\rgnlauncher1.0.exe

Digital Signature
Signed by:
German Roleplay Community

Authority:
German Roleplay Community

Valid from:
1/4/2013 7:58:16 PM

Valid to:
1/1/2040 12:59:59 AM

Subject:
CN=German Roleplay Community, O=German Roleplay Community, E=admin@germanroleplay.net

Issuer:
CN=German Roleplay Community, O=German Roleplay Community, E=admin@germanroleplay.net

Serial number:
AA3276E42E5D7AAB474F15D5BB5195CE

File PE Metadata
Compilation timestamp:
5/29/2015 6:49:23 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
98304:zvGwndHKVOmMakrTfebY06H1J7WX8tADvKH:DGwnNKVgaC6bYVhrgiH

Entry address:
0x67B000

Entry point:
EB, 08, 0F, 0A, 39, 00, 00, 00, 00, 00, E9, 00, 20, 00, 00, 54, 41, 47, 47, 00, 20, 00, 00, E4, 15, 00, 00, 01, 00, 30, 82, 15, E0, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 02, A0, 82, 15, D1, 30, 82, 15, CD, 02, 01, 01, 31, 09, 30, 07, 06, 05, 2B, 0E, 03, 02, 1A, 30, 82, 09, 4C, 06, 09, 2A, 86, 48, 86, F7, 0D, 01, 07, 01, A0, 82, 09, 3D, 04, 82, 09, 39, D0, 00, 01, 00, 01, C1, B1, A1, 02, 00, 03, 00, 04, 00, 00, 00, 26, 00, 00, 00, 01, 00, AA, 5F, 17, 82, F6, 2D, 5C, E5, 4C, 3D, F6, AF, AE, 47, A2, 82, 55...
 
[+]

Code size:
444.5 KB (455,168 bytes)

The file rgnlauncher1.0.exe has been seen being distributed by the following URL.

https://anticheat.revival-gaming.net/dl.php?rgnlauncher1.0.exe

Scan rgnlauncher1.0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.