» bigtracker org gta san andreas 2005 pc.exe
Overview
Analysis
File Details
Downloads (1)

bigtracker org gta san andreas 2005 pc.exe

PDA Distribution LLC

The application bigtracker org gta san andreas 2005 pc.exe, “Manufactured Sence App” by PDA Distribution has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from forces.mosts-land.ru.

File name:

Publisher:

Beorfd Software Coregion (signed by PDA Distribution LLC)

Description:

Manufactured Sence App

Version:

6.0.6.163

MD5:

72dc078cf86c8635c75c741cdad30104

SHA-1:

04b131c9b6d5099347dcafb773404b7f4356c2ed

SHA-256:

05a3d6cfc06160536723a2a0561a418a8a1091ee65df4494f8b310dbf1297897

Scanner detections:

1 / 68

Status:

Adware

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:

4/26/2024 11:40:15 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.PDADistribution.g

14.7.27.14

File size:

287.4 KB (294,288 bytes)

Product version:

6.0

2008-2012 Dtelothsednt Eneghtnmefnt

Original file name:

dsg2gds.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\bigtracker org gta san andreas 2005 pc.exe

Digital Signature

Signed by:

PDA Distribution LLC

Authority:

Thawte, Inc.

Valid from:

3/5/2014 4:00:00 AM

Valid to:

3/6/2015 3:59:59 AM

Subject:

CN=PDA Distribution LLC, O=PDA Distribution LLC, L=Moscow, S=Moscow region, C=RU

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

073734171C2AD1B60C674267620A6C93

File PE Metadata

Compilation timestamp:

6/20/1992 2:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

3072:WUHvo71Mrh3DFsaGOIx3BI42Mr76sgu/t4fq6dO78JGGhr6n9MPXyas5TF8vvOMy:W4u1ADWafoCMNOprJGGd60fETFqf/lg

Entry address:

0x1000

Entry point:

E8, 02, 00, 00, 00, 8B, C0, E9, 4C, D9, 03, 00, FF, 25, 24, 10, 44, 00, B8, 08, 10, 40, 00, C3, 55, 8B, EC, 83, C4, D0, C7, 45, F8, B2, 19, 01, 00, C7, 45, F4, 29, A9, 01, 00, C7, 45, F0, 3B, 88, 01, 00, C7, 45, EC, 99, 9C, 01, 00, 33, C0, 89, 45, E8, 8B, 45, E8, 50, 8B, 45, EC, 50, 8B, 45, F0, 50, 8B, 45, F4, 50, 8B, 45, F8, 50, 8B, 45, FC, 50, E8, BC, 03, 00, 00, 85, C0, 75, 1D, 89, 15, DB, 10, 44, 00, 66, C7, 05, F5, 10, 44, 00, 2C, C1, 81, E1, A2, 00, 00, 00, 89, 35, 40, 10, 44, 00, 89, C7, 89, D1, 89... 
[+]

Code size:

247 KB (252,928 bytes)

The file bigtracker org gta san andreas 2005 pc.exe has been seen being distributed by the following URL.

http://forces.mosts-land.ru/MTIwOTtodHRwOi8vYmlndHJhY2tlci5vcmcvbG9hZC8wLTAtMC03NDcyLTIwO25hbWU9QmlnVHJhY2tlci5vcmdfR1RBK1NhbitBbmRyZWFzKyUyODIwMDUlMjkrUEMudG9ycmVudDtzaXplPTIxNjA2O3R5cGU9dG9ycmVudA==

Remove bigtracker org gta san andreas 2005 pc.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.