home

Settlers6.exe

THE SETTLERS - Rise of an Empire

Blue Byte GmbH

Publisher:
Blue Byte GmbH  (signed and verified)

Product:
THE SETTLERS - Rise of an Empire

Version:
1, 6, 4287, 0

MD5:
43d82b86dfb058b61f9f36fd1588cbe1

SHA-1:
f90d566fd2a7309ce95fd0a6bb33314e2bfc366b

SHA-256:
0f1c2fcb698272922ee6c9865c34cc6e50159a5607e052fa5e959d85dcb44063

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/25/2024 6:23:29 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.14726

File size:
3.4 MB (3,588,616 bytes)

Product version:
1, 6, 4287, 0

Copyright:
Copyright (C) 2007 Blue Byte GmbH

Original file name:
Settlers6.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\ubisoft\the settlers - rise of an empire\base\bin\settlers6.exe

Digital Signature
Signed by:
Blue Byte GmbH

Authority:
VeriSign, Inc.

Valid from:
6/20/2007 1:00:00 AM

Valid to:
6/20/2008 12:59:59 AM

Subject:
CN=Blue Byte GmbH, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Blue Byte GmbH, L=Duesseldorf, S=NRW, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4526A5ED613DCCCED9B3B62342A4EF8C

File PE Metadata
Compilation timestamp:
4/30/2008 10:03:33 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:EmLUmaN2bWtK0ffJoBrciQad5oRcVBTQRgBb:XraNzxfJKZt02QW

Entry address:
0x8174A0

Entry point:
50, 68, 29, 38, 1E, DF, A1, A0, 72, C1, 00, 8B, 00, FF, E0, 00, 70, 81, 00, 0A, 00, 00, 00, A7, 34, 00, 00, 00, 00, 00, 00, 00, 00, 52, 53, 44, 53, AD, 6A, 26, BA, 53, B5, E1, 4E, BA, BA, F6, 89, 36, C8, 8E, 75, 01, 00, 00, 00, 50, 3A, 5C, 53, 36, 5C, 50, 72, 67, 5C, 53, 36, 5C, 5F, 54, 6D, 70, 5C, 42, 69, 6E, 5C, 53, 65, 74, 74, 6C, 65, 72, 73, 36, 54, 52, 2E, 70, 64, 62, 00, 00, 00, 00, 00, E5, 35, 18, 48, 00, 00, 00, 00, 02, 00, 00, 00, 3E, 00, 00, 00, C1, 74, 81, 00, C1, 88, 04, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9318  (probably packed)

Code size:
5 MB (5,242,880 bytes)

Scan Settlers6.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.