» updatephysx.exe
Overview
Analysis
File Details
Programs (1)

updatephysx.exe

Green Man Gaming Limited

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with Capsule.

File name:

updatephysx.exe

Publisher:

Green Man Gaming Limited (signed and verified)

MD5:

c993e0f83831706a410b599fbd60c24f

SHA-1:

30dadafae6dea617cc57ef14cd90d833ae170598

SHA-256:

9b2882d0ac39218143cba82eae7c72cc0b5a6baa9fc9cf82f1185841d4215a10

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/24/2024 5:47:06 PM UTC (today)

File size:

412.6 KB (422,512 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

Common path:

C:\Program Files\capsule\bin\updatephysx.exe

Digital Signature

Signed by:

Green Man Gaming Limited

Authority:

VeriSign, Inc.

Valid from:

10/24/2011 5:00:00 PM

Valid to:

11/14/2012 4:59:59 PM

Subject:

CN=Green Man Gaming Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Green Man Gaming Limited, L=London, S=London, C=GB

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

13E4FA30513B620129D3DAE642F06B5A

File PE Metadata

Compilation timestamp:

12/5/2009 3:50:52 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

1536:3pgpHzb9dZVX9fHMvG0D3XJ/Q/UN1qFcKinaHt+pkaa1zxFC+0d+ByLkqIzjbanh:5gXdZt9P6D3XJ5Shz7CtdKyL5KZw

Entry address:

0x30FA

Entry point:

81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, EC, 42, 00, E8, F1, 2B, 00, 00, A3, 64, EB, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 8F, 42, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, E3, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 40, 43, 00, 50, 57, E8, 92, 28, 00, 00... 
[+]

Entropy:

4.3031

Packer / compiler:

Nullsoft install system v2.x

Code size:

23.5 KB (24,064 bytes)

The file updatephysx.exe has been discovered within the following program.

Capsule by Green Man Gaming Limited

Green Man Gaming is an online downloadable PC games retailer that allows its users to download games with SecuROM DRM.

www.greenmangaming.com

About 3% of users remove it

Scan updatephysx.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.