home

bullypc_efigs_patchto_v1200.exe

InstallShield

Macrovision Corporation

The program is a setup application that uses the InstallShield Setup installer. The file has been seen being downloaded from updates.rockstargames.com.
Publisher:
Macrovision Corporation

Product:
InstallShield

Description:
Setup Launcher

Version:
14.0.162

MD5:
8efb9cc4634b99740d3ea886b1ff283f

SHA-1:
d14f5813d7c02d157d4075c0ec66ed4ded1e90dc

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 4:27:47 PM UTC  (today)

File size:
15.4 MB (16,145,517 bytes)

Product version:
14.0

Copyright:
Copyright (C) 2007 Macrovision Corporation

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Language:
English (United States)

Common path:
C:\documents and settings\administrateur\mes documents\downloads\bullypc_efigs_patchto_v1200.exe

File PE Metadata
Compilation timestamp:
4/19/2007 3:03:15 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
393216:vPbz1XrzUHJhf7xzxeV/7xgmXj3fgA/5i0sayAUjhI24:vPXRgphf7xe+mrp/whaOlk

Entry address:
0x2996C

Entry point:
72, 05, 15, 79, 9E, A9, 1B, 88, E9, F2, 85, C6, 73, 05, 0F, AF, C7, 32, C5, BA, 92, 35, FE, C7, 88, D5, 80, F9, 81, EB, 01, 42, B9, 8C, BB, 8D, 6A, FE, C6, 8D, 0D, 98, 01, C9, 35, E8, 00, 00, 00, 00, FF, C6, 0F, B7, F7, FE, C9, 8B, F7, C7, C7, 6E, 29, C7, A3, 88, E9, 3D, 8D, 42, 00, 00, 58, 8D, 35, 2C, E5, 1A, 03, 69, D3, 77, D1, 3D, EC, 8A, CB, 86, FA, F3, 20, EE, 8D, 1D, F5, 30, 06, E1, F6, C4, 29, C6, C6, 03, 84, D6, 47, 8D, 2D, DD, 98, 08, D0, 47, 0F, B7, E9, F7, C7, A2, 91, 5B, AC, EB, 03, C6, C7, AA...
 
[+]

Entropy:
7.9915  (probably packed)

Code size:
212 KB (217,088 bytes)

The file bullypc_efigs_patchto_v1200.exe has been seen being distributed by the following URL.

http://updates.rockstargames.com/patches/BullySE/.../BullyPC_EFIGS_PatchTo_v1200.exe

Scan bullypc_efigs_patchto_v1200.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.