home

Setup.exe

Downloader

Aeria Games and Entertainment

This downloadble file is typically blocked through Google's Safe Browsing technology in Chrome web browser. The file has been seen being downloaded from download.aeriagames.com.
Publisher:
Aeria Games & Entertainment  (signed by Aeria Games and Entertainment)

Product:
Downloader

Version:
2,1,0,0

MD5:
79bdb788fde79d054554b143f7ab12d4

SHA-1:
57aca61ebd9e2befc797e9acc33d4204f0a20bab

SHA-256:
8b454801cded938e10439bfc115b91b9dd3a05d86abc8aa45ef5591bb3501081

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 11:43:15 PM UTC  (a few moments ago)

File size:
532.5 KB (545,304 bytes)

Product version:
2,1,4908,0

Copyright:
© 2012 Aeria Games & Entertainment, Inc.

Original file name:
Downloader.exe

Language:
English (United States)

Common path:
C:\users\{user}\downloads\setup.exe

Digital Signature
Signed by:
Aeria Games and Entertainment

Authority:
Thawte, Inc.

Valid from:
1/24/2012 4:00:00 PM

Valid to:
1/24/2014 3:59:59 PM

Subject:
CN=Aeria Games and Entertainment, O=Aeria Games and Entertainment, L=Santa Clara, S=California, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1A25B9207D56560561E712462DE87F87

File PE Metadata
Compilation timestamp:
11/4/2013 1:00:49 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:OCkcwuzYuin4rzNVSvvB/56TAEHNnlPvzH8dkIauY:OIzTVrzQvB/ITAk1JzhB

Entry address:
0x21AB1

Entry point:
E8, AD, 72, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 10, 83, 65, FC, 00, 56, 8B, 75, 08, 85, F6, 75, 16, E8, 50, 11, 00, 00, 6A, 16, 5E, 89, 30, E8, B4, 45, 00, 00, 8B, C6, E9, 0C, 02, 00, 00, 6A, 24, 68, FF, 00, 00, 00, 56, E8, 9E, E6, FF, FF, 8B, 45, 0C, 83, C4, 0C, 85, C0, 74, D3, 8B, 08, 8B, 40, 04, 89, 4D, F0, 89, 45, F4, 83, F8, FF, 7F, 16, 7C, 08, 81, F9, 40, 57, FF, FF, 73, 0C, E8, 09, 11, 00, 00, 6A, 16, 5E, 89, 30, EB, BC, 83, F8, 07, 7C, 0A, 7F, ED, 81, F9, CF, 26, 41, 93, 77, E5...
 
[+]

Entropy:
7.2086

Code size:
198 KB (202,752 bytes)

The file Setup.exe has been seen being distributed by the following URL.

http://download.aeriagames.com/files/games/us/primeworld/.../primeworld_us_downloader.exe

Scan Setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.