home

Playtech PLC

Publisher Information

Playtech PLC is a software publisher located in Douglas, IM*. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
2/20/2014 1:00:00 AM

Valid to:
1/16/2015 12:59:59 AM

Subject:
CN=Playtech PLC, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Playtech PLC, L=Douglas, S=IM, C=IM

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
764e6db88b018bfebd8f7b533dc3a6d3

Scanner detections:
Malware distribution  (82% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Crossrider.PlaytechPLC.Installer.Meta (M)
91.11%

Dr.Web
infected with Trojan.DownLoader11.47255, Trojan.DownLoader11.48017, infected with Trojan.DownLoader11.48017, Trojan.DownLoader14.10941
28.89%

Zillya! Antivirus
Adware.ConvertAd.Win32.16257, Trojan.BlackGen.Win32.11, Adware.BrowseFox.Win32.142010, Trojan.Agent.Win32.605308, Trojan.Injector.Win32.341777
15.56%

NANO AntiVirus
Trojan.Win32.DownLoader11.dxitgk, Riskware.Win32.CrossRider.dxcrzq
15.56%

Fortinet FortiGate
PossibleThreat.SB!tr
11.11%

Vba32 AntiVirus
Trojan.GoogUpdate, suspected of Trojan.Downloader.gen.h
8.89%

Rising Antivirus
PE:Trojan.Win32.Generic.17523F44!391266116, PE:Malware.Generic/QRS!1.9E2D [F]
8.89%

K7 AntiVirus
Riskware
6.67%

ViRobot
Trojan.Win32.A.PSW-CaveSpy.916720[h], Trojan.Win32.A.PSW-Tepfer.904464[h], Trojan.Win32.A.PSW-Tepfer.947144[h]
6.67%

Bkav FE
HW32.Packed, W32.Clod3d3.Trojan
4.44%

1 / 68      (Malware)
casinocgmes.exe (CasinoGranMadrid.es)  (0f106d5af6c1a72efda9f5066f768ab9)

1 / 68      (Malware)
casinocom.exe (Casino.com)  (b6695f558c2c40085c66f008eb64742a)

1 / 68      (Malware)
setupcasino.exe_6489a6.exe (Paddy Power Casino)  (f5aa05c70addbcb0597f8ec0e87b76b0)

1 / 68      (Malware)
winner_casino.exe (Winner Casino)  (8d1215f3761f5ef67a7fc98e0205a5c6)

1 / 68      (Malware)
setupcasino_8ac180.exe (Premier Casino)  (5e25725cf73284acb37af2caa932af6e)

1 / 68      (Malware)
titanbsetup_4a612.exe (Titanbet Casino)  (5557ce67a6c146721d8401699e308489)

1 / 68      (Malware)
setuppoker_27252d.exe (Unibet.fr)  (743fc0d1188ea3092ff6b2f110c9c81b)

1 / 68      (Malware)
casinogranmadrid.exe (Casino Gran Madrid)  (55f9781f086e55a3aaa5e37de75ecd2b)

1 / 68      (Malware)
setupcasino_91bb00_en.exe (Joyland Casino)  (a0615c7a898099e8a5f8388ade81b53e)

1 / 68      (Malware)
setupcasino_a616b8.exe (Bet365 Casino)  (8f82e573aba85a49c3e5fdbe765b8eab)

0 / 68
setuppoker_3501e1.exe (Winner Poker UK)  (3988bd72a8ad68c36a79fb7d8a1323c4)

2 / 68      (Malware)
setuppoker_c356d9.exe (Poker Gran Madrid)  (45126435eaa822a22aa9d89d2e45e1bd)

2 / 68      (Malware)
Setup.exe (Titanbet Casino UK)  (5c8c682af15b8239d1ed9beb6365ce5e)

2 / 68      (Malware)
plazawin_cab5d0.exe (PlazaWin Casino)  (e97ba1677c6c58cef234cd2a372e162b)

2 / 68      (Malware)
setupcasino_623334.exe (Dafa888 Casino)  (46caa1924b7a93de8e6fffab9922186d)

0 / 68
titanpsetup_123f70.exe (Titanbet Poker UK)  (ceea1f4dba5605735756b63d283df25d)

0 / 68
setupcasino_1dfa3d.exe (Titanbet.es Casino)  (aa7b9690c2bd4bfe1c431678a4502861)

0 / 68
winnercsetup_2f1f07.exe (Winner Casino shortcut)  (a487e1aa8a8565efd59b4487b86df601)

2 / 68      (Malware)
setupcasino_895173.exe (Betfred Casino)  (fa164b3e78ee28bfbfbbae373fff05e1)

3 / 68      (Malware)
setupcasino_30daff.exe (Betfair Casino)  (9f9e6d983d83ff2760d53a5e122e1d64)

1 / 68      (Malware)
setupcasino_d590d0_uk.exe (Prestige Casino)  (fc1b25d180fb147b85891c7059c91efc)

2 / 68      (Malware)
logicielturbopoker_ffa97e.exe (Turbopoker)  (ffedf5bbe994d03e0ecbb035f6ba6045)

1 / 68      (Malware)
setupcasino_80e5ef.exe (Casino Las Vegas)  (4dab836d9fcc16e6ee5b4dd9488d7274)

3 / 68      (inconclusive)
setupcasino_71d176.exe (Winner Casino Club)  (8dd86f0d92a52d091b3a3c7b4f282c2a)

4 / 68      (PUP)
casinogranmadrid.exe (Casino Gran Madrid)  (5747cbb174b9a517cb975c2f3f9b9583)

4 / 68      (Malware)
setupcasino_b51bc7.exe (SCasino)  (45d5c70fa6930895fdda1de86768a14e)

3 / 68      (inconclusive)
titanpsetup_29c401.exe (Titan Poker)  (7363a15e41fbdd3f4d294ce57f388219)

3 / 68      (inconclusive)
setupcasino_c1eb72.exe (7Regal Casino)  (3802394f55f67a56624244c9b7e3c13d)

4 / 68      (Malware)
setuppoker.exe (Sportium Poker)  (9bfbb77e21f4422c3fb81e8a19046808)

3 / 68      (PUP)
setupcasino.exe (William Hill Casino Italy)  (e745e57ed7d92aa3656ee5f126e72522)

 
Latest 30 of 65 files

Downloads URLs for files signed by Playtech PLC.

1 / 68      (Malware)
http://static.playtech-installer.com/download/45/.../0/casinocgmes.exe  (0f106d5af6c1a72efda9f5066f768ab9)

4 / 68      (Malware)
http://banner.sportium.es/.../SetupPoker.exe  (9bfbb77e21f4422c3fb81e8a19046808)

2 / 68      (Malware)
http://serve.eurogrand.com/promoRedirect?internal&default_zone=1470926399&lp=1470640044&opt_lang=pl&var4=doc_downloadHPPage&var7=noSteps-pl&tab=cadl  (setupcasino_9c3a55_en.exe)

3 / 68      (Malware)
http://download.c365download.com/.../SetupCasino.exe  (362256be0fb13de256ae3dad43aa6294)

2 / 68      (Malware)
http://serve.eurogrand.com/promoRedirect?internal&default_zone=1470926399&lp=1470640044&opt_lang=en&var4=getting-started_downloadHPPage&var7=noSteps-en&tab=cadl  (setupcasino_9c3a55_en.exe)

3 / 68      (Malware)
https://poker.netbet.gr/download  (setuppoker_73dabc(1).exe)

1 / 68      (Malware)
http://banner.casino.premiertv.es/.../SetupCasino.exe  (5e25725cf73284acb37af2caa932af6e)

3 / 68      (Malware)
https://poker.netbet.gr/.../download  (setuppoker_73dabc(1).exe)

1 / 68      (Malware)
http://static.playtech-installer.com/download/50/.../0/casinogranmadrid.exe  (55f9781f086e55a3aaa5e37de75ecd2b)

3 / 68      (Malware)
https://proxy-nl.hide.me/go.php?u=KPhcIii7CirKENw6h9l6reGthvLfdNb Gvfdcg==&b=5  (setuppoker_73dabc(1).exe)

2 / 68      (PUP)
http://www.mansion-casino.co/go/.../mansion-casino  (unconfirmed 204255.crdownload)

3 / 68      (PUP)
http://banner.casino.williamhill.it/.../SetupCasino.exe  (e745e57ed7d92aa3656ee5f126e72522)

0 / 68
http://banner.titanbet.co.uk/.../SetupPoker.exe  (ceea1f4dba5605735756b63d283df25d)

3 / 68      (Malware)
http://banner.bet365casino.com/.../SetupCasino.exe  (362256be0fb13de256ae3dad43aa6294)

2 / 68      (Malware)
http://www.betfred.com/siteservices/.../tracking.ashx?target=SetupCasinoSDL.exe  (fa164b3e78ee28bfbfbbae373fff05e1)

2 / 68      (Malware)
http://reportingint.coral.co.uk/.../rr/nobook:1133919,nosent:746297,nosrep:1747/http://banner.coral.co.uk/.../SetupPoker.exe  (e156b692996bf30a42d7ccc0d0d3d845)

3 / 68      (Malware)
https://poker.netbet.com/.../download  (setuppoker_73dabc(1).exe)

1 / 68      (Malware)
http://serve.prestigecasino.com/promoRedirect?internal&default_zone=1476859745&lp=1477442115&opt_lang=uk&var4=Onlineslots_ctaSlots_Download&var7=noSteps-uk  (setupcasino_d590d0_uk.exe)

1 / 68      (Malware)
http://ru.pokerstrategy.com/winner-poker/link/download/.../  (winnercsetup_3750ea.exe)

2 / 68      (PUP)
http://banner.lesacasino.com/.../SetupCasino.exe  (1ceac247648e65e36f416d07555a6d00)

3 / 68      (Malware)
https://poker.netbet.com/.../download?idaffiliation=329477  (setuppoker_73dabc(1).exe)

4 / 68      (Malware)
http://banner.sportium.es/.../SetupPoker.exe  (9bfbb77e21f4422c3fb81e8a19046808)

3 / 68      (Malware)
http://banner.caliente.mx/.../SetupCasino.exe  (2f0b36a0d2101ba2789fcd4e49a30373)

1 / 68      (PUP)
http://bannerpt.club777.com/installer/.../SetupCasino_fe9ba9_it.exe  (28b7904a6d2a5d862d710734312b7e8e)

1 / 68      (PUP)
http://bannerpt.club777.com/.../SetupCasino.exe  (28b7904a6d2a5d862d710734312b7e8e)

1 / 68      (Malware)
http://download.c365download.com/installer/.../SetupCasino_a616b8.exe  (87ae628920c1fd7b5569393f626ab0f9)

1 / 68      (PUP)
http://banner.club777.com/.../SetupCasino.exe  (28b7904a6d2a5d862d710734312b7e8e)

2 / 68      (PUP)
http://bannerpt.mansioncasino.com/installer/.../SetupCasino_60b821_en.exe  (ba53cd897cda20b4a077810cf71253a8)

2 / 68      (PUP)
http://bannerpt.mansioncasino.com/installer/.../SetupCasino_cd2f98_en.exe  (ba53cd897cda20b4a077810cf71253a8)

2 / 68      (PUP)
http://bannerpt.mansioncasino.com/.../SetupCasino.exe  (ba53cd897cda20b4a077810cf71253a8)

 
Latest 30 of 37 download URLs

The following websites host and distribute files published by Playtech PLC.

www.mansion-casino.co

reportingint.coral.co.uk

banner.lesacasino.com

static.playtech-installer.com

poker.netbet.com

banner.bet365casino.com

banner.caliente.mx

banner.titanbet.co.uk

bannerpt.club777.com

banner.club777.com

bannerpt.mansioncasino.com

banner.mansioncasino.com

banner.sportium.es

banner.slotsheaven.com

ru.pokerstrategy.com

download.c365download.com

serve.prestigecasino.com

www.betfred.com

banner.casino.williamhill.com

banner.casino.williamhill.it

The certificates below are also signed by Playtech PLC.

12FF913C87BF195CFFA06E5205EDD8D2  (Jan 14, 2016 to Feb 13, 2018)

6B5F59AF1247A2E7A051034FF79F008A  (Nov 14, 2014 to Feb 13, 2018)

The following publishers (by Authenticode signature organization name) are related.

Playtech Software Ltd.

PLAYTECH LIMITED

Playtech Software Limited

* Note, the details and description above are based on the code signing digital signature issued to Playtech PLC by VeriSign, Inc. on February 20, 2014 with the serial number '764e6db88b018bfebd8f7b533dc3a6d3'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.