home

grand-theft-auto-5.exe

The application grand-theft-auto-5.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. It runs as a scheduled task under the Windows Task Scheduler. The file has been seen being downloaded from tmpfile1441.s3.amazonaws.com.
MD5:
70e382a0d9e7bdab1af6ef4d9f4d9adb

SHA-1:
933641c83b9560397e0b8579b46132b37a173394

SHA-256:
6ba4ff2366e601ac0cec91f2e215eea36b9c75574ede638d147ba329f1f7464f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
5/1/2024 2:38:53 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Downloader (M)
16.3.10.17

File size:
153.3 KB (157,000 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\grand-theft-auto-5.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
3072:1FxR8lMlJMhKUnhkdPmJ/PjyiUrW+RUFwEt1a5OmcbZnvSI:1FxRAgGfjUSGUFw1ctv

Entry point:
50, 4B, 03, 04, 14, 00, 00, 00, 00, 00, 3D, 8F, 4E, 48, 1D, 64, 37, F8, 90, 64, 02, 00, 90, 64, 02, 00, 2B, 00, 00, 00, 47, 72, 61, 6E, 64, 2D, 54, 68, 65, 66, 74, 2D, 41, 75, 74, 6F, 2D, 56, 2D, 46, 55, 4C, 4C, 2D, 55, 4E, 4C, 4F, 43, 4B, 45, 44, 2D, 53, 47, 20, 28, 31, 29, 2E, 7A, 69, 70, 50, 4B, 03, 04, 14, 00, 00, 00, 08, 00, 80, AA, 94, 46, 26, 6A, 99, BB, B4, 63, 02, 00, 4B, 86, 02, 00, 2B, 00, 00, 00, 47, 72, 61, 6E, 64, 20, 54, 68, 65, 66, 74, 20, 41, 75, 74, 6F, 20, 56, 2D, 46, 55, 4C, 4C, 20, 55...
 
[+]

Scheduled Task
Task name:
{7AD887A4-D7DE-4712-93A3-2D8C01B777AF}

Trigger:
Registration (Runs on registration)


The file grand-theft-auto-5.exe has been seen being distributed by the following URL.

https://tmpfile1441.s3.amazonaws.com/download77/ic_trackings/714/.../grand-theft-auto-5.exe

Remove grand-theft-auto-5.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.