Reason Labs

fifa_13_game.exe

RTK-TERMINAL, LLC

The application fifa_13_game.exe by RTK-TERMINAL has been detected as Adware.Bundler.
Publisher:
RTK-TERMINAL, LLC  (signed and verified)

MD5:
9f609b94d29f1ae79f8c0947fbfb2efc

SHA-1:
16d22a2c6c6b3777b204108c2413f5eea9aa1747

SHA-256:
c36a4ae71ce7673af690fd2244792d9e96f31122b772acd3a447a24d687f7e84

Detection:
Adware.Bundler

Risk:
Medium

Analysis date:
1/21/2019 12:05:44 AM UTC  (today)

File size:
1.3 MB (1,311,760 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\fifa_13_game.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
2/13/2017 4:00:00 PM

Valid to:
7/21/2017 4:59:59 PM

Subject:
CN="RTK-TERMINAL, LLC", O="RTK-TERMINAL, LLC", STREET="Rabochaja, 8", L=Belgorod, S=RU, PostalCode=308017, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
59BCFA5B8FBB32BE06B1AC01AF5B4265

File PE Metadata
Compilation timestamp:
3/14/2017 5:50:34 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

Entry address:
0x1242F0

Entry point:
55, 8B, EC, 6A, FF, 68, 30, 81, 52, 00, 68, BC, 4F, 52, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, B8, 80, 52, 00, 33, D2, 8A, D4, 89, 15, 34, C1, 52, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 30, C1, 52, 00, C1, E1, 08, 03, CA, 89, 0D, 2C, C1, 52, 00, C1, E8, 10, A3, 28, C1, 52, 00, 33, F6, 56, E8, 16, 0B, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, E1, 07, 00, 00, FF, 15, B4, 80, 52, 00, A3, 38, C6, 52, 00, E8...
 
[+]

Entropy:
6.7847

Developed / compiled with:
Microsoft Visual C++ v6.0

Characteristics:
0x783

Code size:
1.2 MB (1,208,320 bytes)

There are numerous known code variantions that share the same compilation structure.

Adware.Bundler
component.exe  (8d7d6a128cd97914ed498b25b02e0397092120be)

Adware.Dropper.OO
microsoft_encarta_student_2008_french_dvd_isobstko.exe  (a935e90993add94ca477080449c7f1225b7ce553)

Adware.Dropper.OO
adobe_bridge_cc_crack_2016_serial_key_free_download.exe  (884498a3aefa71be7d90093163e0559d2ca9c832)

Adware.Bundler
windows_7_activator_full_download_32.exe  (64ec8fa1f997c116b4380a31c020b0620bc6d4c6)

Adware.Bundler
bruno.exe  (c1c0bdfa68988a7692bd40b6461692aae892108e)

Adware.Bundler
guitarrig4.exe  (3faee27857a6a3e7d69cce66400c4f565ab1c821)

Adware.Bundler
office_2013_toolkit_and_ez_activator_full_final.exe  (3f4c0506a99dfc1ea533adeb809c981901134bde)

Adware.Bundler
league-of-legends-rp-generatorzip.exe  (fa4a3ac4e7f6bf8c898424c019da870c7fd6c855)

Adware.Bundler
driver_toolkit_8.exe  (fc5aa0238a6f6930e38e3982755e50b61543bf39)

Adware.Bundler
the_blacklist_berlin_no.exe  (97766b16f4cde7bb2b60e060bb85fd5e97af926d)

Adware.Bundler
700mb_movie.exe  (163c152f317214b9520fd4f574bb1a886615fcf9)

Adware.Bundler
internet_download_manager_idm_6.exe  (129f61d47016289b5979bad503bbe493bd2ad908)

Adware.Bundler
just_cause_2_www_apunkagames_net_part1.exe  (795fdb6d634f5da50d430782cc60e5c81165027e)

Adware.Bundler
office_2010_toolkit.exe  (0bc7dc6775783cd3601d79e8df697672268a854d)

Adware.Bundler
component.exe  (3f70fa542df073c205c587df9ad5f0858da4088e)

Adware.Dropper
700mb_movie.exe  (af32ce8e5bfade3cfa67137a79215d0033761904)

Adware.Dropper.OO
ea_sports_cricket_2011_game.exe  (36903234f9f6b8fb2dff91b3d0febf9482d939cf)

Adware.Dropper
movie.exe  (d63bc63ce4064ff0f637f5a78291c60e1bd68dc0)

Adware.Dropper
download.exe  (9a8faf664e656aabff98d459ad446dd1f7914108)

Adware.Dropper
download_solidworks_2017_beta_crack_full_version_w.exe  (ef97dff9005e3ea5c13d689214f425560502009a)

Adware.Dropper
fdm_nicky_romero_novell_original_mix_320_kbps_rel.exe  (b66fdf4c13e2468da0e7d6929471a0531deeb4a3)

Adware.Dropper
global_mapper_18_activation_key.exe  (7fb9ae83c592c60e9fee5fbf776f0aab900d9081)

Adware.Dropper
fifa_13_game_free_download_for_pc.exe  (3a8fb183e682f15755870677149767e9571bb1e1)

Adware.Dropper.OO
adobe_pagemaker_7.exe  (6da93ef7773c61b69afa0cb62d699ea91e1c00e3)

Adware.Dropper.OO
windows_8_activator_32_and_64_bit_free_download.exe  (e3dfc0a15f8494088312c8c739f5381cba9c8af7)

Adware.Dropper
nero_burning_rom_2017_crack.exe  (14029dbcc2a72e3d602edb49dcf36cd87bac0eac)

Adware.Dropper.OO
project_igi_1_game_free_download_full_version.exe  (b5983ca11b3c6f2f906dedfb56ff8b150679f976)

Adware.Dropper.OO
adobe_photoshop_7_0.exe  (cad182cb2045b7eda36d303b370f6e89f4e0f164)

Adware.Dropper.OO
microsoft_office_2010_free_download.exe  (877deb88a03071ca2e106c8e6caf51197796c10c)

Adware.Dropper
ben_10_all_games.exe  (e1e60df4efc873e60fe302cda61e30e2301e1c39)

Adware.Dropper.OO
download_driver_axioo_neon_mnc_windows_7_32bit.exe  (d4321cf32d1bf94143978ca1c899defd80fbaa23)

Download Reason Core Security - Powerful anti-malware software