home

setupcasino_4d3e60_en.exe

Playtech Software Installer

Playtech Software Limited

This is a self-extracting archive and installer. This is the uninstaller utility registered in the Windows Control Panel for the program EuroGrand Casino. The file has been seen being downloaded from serve.eurogrand.com and multiple other hosts.
Publisher:
Playtech  (signed by Playtech Software Limited)

Product:
Playtech Software Installer

Description:
EuroGrand Casino

Version:
1, 0, 0, 1

MD5:
a38ebc3b4c8d9344e6372951d1e57a50

SHA-1:
aaa83a6dd69a5772545286dd7d68a4ee1a4d6727

SHA-256:
84af9478433e6dabc0c18a54e68fac44917d7fab2b7afbe339e5e0b48376a921

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 10:03:46 PM UTC  (today)

File size:
524.4 KB (536,960 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright (C) 2001-2009 Playtech

Original file name:
CasinoDownloader2.exe

File type:
Executable application (Win32 EXE)

Language:
Swedish (Sweden)

Common path:
C:\users\{user}\downloads\setupcasino_4d3e60_en.exe

Digital Signature
Signed by:
Playtech Software Limited

Authority:
VeriSign, Inc.

Valid from:
10/22/2012 2:00:00 AM

Valid to:
10/27/2015 12:59:59 AM

Subject:
CN=Playtech Software Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Playtech Software Limited, L=Douglas, S=Douglas, C=IM

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7584CAA2377ED24D26D91034E6DE0EBB

File PE Metadata
Compilation timestamp:
10/27/2012 9:00:35 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:sppJQwsvDZ/8ZfmjNQYoFQW56zaxShLg0MapqkauqWfGT1TEpugl7oINsg811TEt:9xEmjCKW5UP3qnuHUg9o5/It

Entry address:
0x33B7C

Entry point:
B8, 50, F8, 5D, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, D6, 4A, B2, B3, 2D, 4A, 59, DA, 71, 46, 2A, 52, A0, 23, 4A, 1C, AD, DB, C0, DC, A9, 47, A4, 3D, 52, 09, C2, 81, 49, F3, 69, EB, D2, A9, 97, 49, D3, 77, 67, 9A, D0, 71, 43, 84, 26, 92, 7B, 00, D8, 72, 7C, 17, 6C, 67, A2, FB, 61, C0, 86, F0, BC, 9C, AF, CE, D0, 11, 16, 76, 8C, C4, 0B, 3B, 42, 5B, AD, 6C, 03, 69, 75, 2E, 65, 94, E2, A3, 06, 42, 26, AD, 36, 31, A1, 4F, 5F...
 
[+]

Packer / compiler:
PECompact v2

Code size:
331.5 KB (339,456 bytes)

Program Uninstaller
Program name:
EuroGrand Casino

Uninstall string:
"C:\Casino\EuroGrand Casino\_SetupCasino_2060c4_sv.exe" /uninstall


The file setupcasino_4d3e60_en.exe has been seen being distributed by the following 6 URLs.

http://serve.eurogrand.com/promoRedirect?internal&default_zone=1470926399&lp=1470640044&opt_lang=en&var4=registration_downloadTopMenu&var7=noSteps-en&tab=cadl

http://serve.eurogrand.com/promoRedirect?member=webltd&campaign=DEFAULT&channel=ocinl&zone=66906355&lp=14153191

q=http://tnij.org/k0yx

http://banner.eurogrand.com/installer/.../SetupCasino_280ab7.exe

http://serve.eurogrand.com/promoRedirect?internal&default_zone=1470926399&lp=1470640044&opt_lang=de&var4=erste-schritte_downloadHPPage&var7=noSteps-de&tab=cadl

http://serve.eurogrand.com/promoRedirect?internal&default_zone=1470926399&lp=1470640044&opt_lang=en&var4=support_downloadSupport&var7=noSteps-en&tab=cadl

Scan setupcasino_4d3e60_en.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.