» wegame_235.exe
Overview
Analysis
File Details
Downloads (12)

wegame_235.exe

WeGame Client

WeGame.com, Inc.

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

wegame_235.exe

Publisher:

WeGame.com, Inc. (signed by WeGame.com, Inc.)

Product:

WeGame Client

Description:

WeGame Client Setup

Version:

2.3.5

MD5:

f474b3d6f31fc8891870dcf73689c566

SHA-1:

de4b842c5fcf94620761aa7311fd72a239e6f6e7

SHA-256:

66acd8cde2ca58823af2f535e629d95fa348b0982549e0a9e3eb39f7f00049f5

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/24/2024 11:57:23 PM UTC (a few moments ago)

File size:

13.8 MB (14,481,296 bytes)

Product version:

2.3.5

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Digital Signature

Signed by:

WeGame.com, Inc.

Authority:

The USERTRUST Network

Valid from:

4/14/2011 5:00:00 PM

Valid to:

4/14/2016 4:59:59 PM

Subject:

CN="WeGame.com, Inc.", O="WeGame.com, Inc.", STREET=200 Brannan St, L=San Francisco, S=CA, PostalCode=94107, C=US

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

00C92EE0FE643A6BD496FC6F2CB6C417B8

File PE Metadata

Compilation timestamp:

2/18/2010 5:52:05 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

393216:JXui4VI2khlV3r1MZ3jf4ZlZXflpKsvP+nuv2Bd5fn4EB52:si4VI2Onb1KjfGMpBP/r52

Entry address:

0x163C4

Entry point:

55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, F0, 54, 41, 00, E8, 70, 04, FF, FF, 33, C0, 55, 68, 91, 6A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 4D, 6A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 42, EF, FF, FF, E8, 4D, EA, FF, FF, 8D, 55, EC, 33, C0, E8, FB, 87, FF, FF, 8B, 55, EC, B8, AC, D6, 41, 00, E8, A6, EA, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, AC, D6, 41, 00, B2, 01... 
[+]

Entropy:

7.9898

Developed / compiled with:

Microsoft Visual C++

Code size:

85 KB (87,040 bytes)

The file wegame_235.exe has been seen being distributed by the following 12 URLs.

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_fr&type=PROGRAM&Expires=1457208459&Signature=CIoVknbWij~2Qpcv9WONQl7gCsOth1MLxm0gy71Eyu8BqxKi9WVQMvKofB5i~Mq86c~LQaij1t8QEKbMGLPY9zJe3ZceJHPBaADXEaBu8FVNjsWoD5gLHOir5iRrTPoHvKXULV1QU5kM6wPNGTZnW~MRTX6rNOydKf~Fch4~6HM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1476665226&Signature=ImwW0fY9P8ZWcc~Sg0HawKmb39uei7nfC60lqe5my8o9OR3jjdHLcUl~Ju5a6euGLqV0HX78C3vTIDBXah6Ogp5SwKY-H91vne6p5ZWnUoDWl8JtVyjRprBbECIsHZPYNIqNqAu7Oo~IYgI3SKX2~qzI7-kv3oy8SLSTeaaRGag_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1464897546&Signature=GQ1fCUPEnRmchoLFOofQmC4ZwnLKvDg23eXKjsBVPxgs0T7BNBP13uX5Fhfr5l-PxhVCh5-IWepx91SUu3BC~vbhIpNHLIK-nFBKUsd88xRWEa7oGngZsLP63GhLxCuLMX0wJKXSeO2COdWF7ftTbvEU-RPFsfQrEZEEFgVIgeA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1453704285&Signature=RHjejor5GnsJGaDh2pxONamVWBRU-NVJxtS~2CutaJgtlb-qdKojIVjxHz1Wsv8InSFDSeCWA415zmNcXLO2qSli0xGY-IThQl81ig2FKkPjTOqJ5X3BacTgPEdbxUv8pw4fKXg7N3lfXjjdMkUqQiLKZrFxwdz3KuWyhJy7~Os_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1457695511&Signature=O2osUvwGEu990GxXNn4wlrbDkp-q-l5-7-zxD3ER0QXTUHvW942bKulezYt340VVYKFy-HjWPjq40tOTdvtIQeuZqE4nLiK7dSU6lK51MUs7-sUmSKiHx8YcDgj-V-6uDPeccWaX8zpJH~vWyUMERZm8ceFFCaJm6LzXZ-IcBzA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1442219908&Signature=fH44DM2UjZWxapH2BVHJMiCH36wf0JwnANgTAvNDv0mqUPMAVH9BhKajKPGD92RtxswRz~XBTAf1Ag1diDtel9NzRj73i7d4dkZ8gw93bzXya9012QoH9xkwrZoxnAeIBR2DsHQl2kO5f2VhGighb3wutTAKfaN5ixnpZ6tZk7k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1456465293&Signature=InI7IrhLMeXOZYnbx7IF5ihJRhR3-df7mSmkdJPgcFVyP6X4e616CvdDDfX5EZ9sg9YK4O4Bb-ULsnfo1ZVFNWQewbwKYPVrNYuBLMKMYokYJRNtwezpRGp8pTVRw5fmHVE4-oHWty1rutESzXr86mpTD9CVUmlkOHquyT95knU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1457478681&Signature=d-fCFr3U8Zon6ejz-LcLLSWmyuwvcGVIpF7dnb0G-SNAmt7eMK5H0JBKqb9dG-QO9IleNAxk41yonYtYCp9BanTgHc53SRdx6CcEwbjwiIzjM2rgbIS0cekW8cdIIImVRVbtkGov~Byzma5jP7aXnNWyyjXWWpLh-rKxk58oVew_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

blob:http://sd-web.softonic.com/bc8d3751-7458-407e-9cb3-c82eeb1871ff

http://cdn.portalprogramas-download.com/d/.../WeGame

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_fr&type=PROGRAM&Expires=1445721818&Signature=cCt6OhXwdWMIVdjAucugGNY-Qv9v5XMOsR7w6ff7mdPCyI-tFqvN0ba3ABAv2CNKv~fp9pOSvY2iB8Dw3lcs8JX2tAc041mIch0auCKIy0BefTGgda75~rHbga1Y739nWIePS36FwoQAxsNRrsLnelvKNb-k9402bVyLfrUqHC8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

http://gsf-cf.softonic.com/de4/b84/.../file?SD_used=0&channel=WEB&fdh=no&id_file=67999&instance=softonic_en&type=PROGRAM&Expires=1436526498&Signature=hLrYbLU-t7Zl2F4w796aXCESYOHXA8h9NwLrbofDbekgzT60OwhvfXY~za4fju2kJx3O3Xd33XPG5XegBU37nrOyg1eh6GsfJm2iFqKdQHPoUbXnM-ZppIQenuTfLc4GGHKxirfGSTpRyP61nqP3H2od-JjIniFfDBubptB0XO0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=wegame_235.exe

Scan wegame_235.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.