home

vegasredsetup_ae2a1f.exe

Playtech Software Installer

Playtech Software Limited

This is a self-extracting archive and installer. This is the uninstaller utility registered in the Windows Control Panel for the program Vegas Red Casino. The file has been seen being downloaded from banner.vegasred.com and multiple other hosts.
Publisher:
Playtech  (signed by Playtech Software Limited)

Product:
Playtech Software Installer

Description:
Vegas Red Casino

Version:
13.2.0.0

MD5:
fc33efe0433c1c080543767d3cb74e76

SHA-1:
f16f4b3115dd8b506a97b8552a8574c9870f8985

SHA-256:
f6cc0ece7214ce9e70cfcafbb0523d1693a51442ababdfa9d5767698a63333de

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 12:14:37 PM UTC  (today)

File size:
494.3 KB (506,168 bytes)

Product version:
13.2.0.0

Copyright:
Copyright (C) 2001-2009 Playtech

Original file name:
CasinoDownloader2.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\vegasredsetup_ae2a1f.exe

Digital Signature
Signed by:
Playtech Software Limited

Authority:
VeriSign, Inc.

Valid from:
10/22/2012 6:00:00 AM

Valid to:
10/27/2015 5:59:59 AM

Subject:
CN=Playtech Software Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Playtech Software Limited, L=Douglas, S=Douglas, C=IM

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7584CAA2377ED24D26D91034E6DE0EBB

File PE Metadata
Compilation timestamp:
1/14/2013 9:03:28 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:UjQBTTO+USClWquIed81HjjPjGm9i2h5B7jQIM6pQmksgAKcR:YQBTSw4vHfKmsOZjdpRksgiR

Entry address:
0x348BC

Entry point:
B8, 7C, DA, 65, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 20, E5, AB, DF, 87, CC, 75, D6, 9A, D8, C7, 17, ED, 0F, 02, 63, 35, 17, 33, 60, 2D, 66, DE, C3, C2, B5, 00, 95, 48, BA, C5, CB, B4, BE, C6, 20, C6, C9, 63, 94, 65, CE, 59, 14, DD, 06, 64, 77, 56, DA, 33, 8D, 5B, B1, 5A, 05, F5, A2, 03, 02, 6E, C7, BC, F5, BF, CD, E5, 70, F3, 52, 5F, 31, D2, AE, 41, 77, E4, 27, 8F, 95, 19, FC, DA, A8, BB, 9C, A2, 97, 04, BF, BD, 5D, 70...
 
[+]

Packer / compiler:
PECompact v2

Code size:
335.5 KB (343,552 bytes)

Program Uninstaller
Program name:
Vegas Red Casino

Uninstall string:
"C:\Casino\Vegas Red Casino\_VegasredSetup_ae2a1f.exe" /uninstall


The file vegasredsetup_ae2a1f.exe has been seen being distributed by the following 2 URLs.

http://banner.vegasred.com/.../SetupCasino.exe

http://www.ruletka-system.ru/.../VegasredSetup_ae2a1f.exe

Scan vegasredsetup_ae2a1f.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.