home

setupcasino_25ed.exe

Playtech Software Installer

Playtech Software Limited

This is a self-extracting archive and installer. The file has been seen being downloaded from www.betfred.com and multiple other hosts.
Publisher:
Playtech  (signed by Playtech Software Limited)

Product:
Playtech Software Installer

Description:
Betfred Casino

Version:
13.2.11.0

MD5:
70a9a18d87d32927a314de9a8b4c977c

SHA-1:
e5c5ec98a7a44082ce412e97be75d9ff9da58a50

SHA-256:
b8bb9d3f6a7848427d15622bc0bcf00f5c3ff9d13315d122a226e66513d2a060

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/16/2024 7:07:59 AM UTC  (today)

File size:
341.8 KB (350,008 bytes)

Product version:
13.2.11.0

Copyright:
Copyright (C) 2001-2009 Playtech

Original file name:
CasinoDownloader2.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Digital Signature
Signed by:
Playtech Software Limited

Authority:
VeriSign, Inc.

Valid from:
10/22/2012 2:00:00 AM

Valid to:
10/27/2015 12:59:59 AM

Subject:
CN=Playtech Software Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Playtech Software Limited, L=Douglas, S=Douglas, C=IM

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7584CAA2377ED24D26D91034E6DE0EBB

File PE Metadata
Compilation timestamp:
1/17/2014 11:14:13 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:iCv889gvgQ33+UiKRXuJ1QDLLuIZOSmqqMpxWBLcAEaCi4RI:Rv/gg6zhXiQDft4SmqqMnWLwI

Entry address:
0x3533C

Entry point:
B8, A4, 02, 5A, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, A4, 19, D9, CC, 39, 08, 85, AE, 62, 54, D5, CC, FE, 68, 16, 06, B5, 69, CE, B9, 5F, AE, EA, BF, DA, 80, EC, 1F, 3B, 0A, BB, 37, 44, BC, AE, A3, 3D, DC, 3B, 27, 72, 5C, 0F, 5D, D5, 1A, F0, 1A, B9, 51, 87, 51, 27, 13, 1C, 76, 81, 1E, 75, F8, 19, 0D, 00, 07, FA, B6, 29, 6E, 02, EA, 8F, 2F, B5, 3D, FA, B6, 40, 55, F5, 1C, F8, 25, 99, AA, 12, ED, 99, 35, BB, 22, 04, D8, 35...
 
[+]

Packer / compiler:
PECompact v2

Code size:
338 KB (346,112 bytes)

The file setupcasino_25ed.exe has been seen being distributed by the following 2 URLs.

http://www.betfred.com/siteservices/.../tracking.ashx?target=SetupCasinoSDL.exe

http://banner.betfred.com/.../SetupCasino.exe

Scan setupcasino_25ed.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.