» grandtheftauto3.exe
Overview
Analysis
File Details

grandtheftauto3.exe

Salih DEMIRGAN

The executable grandtheftauto3.exe has been detected as malware by 13 anti-virus scanners.

File name:

grandtheftauto3.exe

Publisher:

Salih DEMIRGAN (signed and verified)

MD5:

fbc9a66d172b6ce2e9cf0d16dd001f11

SHA-1:

611fb5190a08a82de7a3cec2ee3def9c0ee254a5

SHA-256:

e1d02b38380aebb8515a819bfd0767f0629d87026ae18216f6787d1eb4304496

Scanner detections:

13 / 68

Status:

Malware

Analysis date:

4/26/2024 2:31:27 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Symmi.50101

363

AVG

Salih

2017.0.2841

Bitdefender

Gen:Variant.Symmi.50101

1.0.20.185

Emsisoft Anti-Malware

Gen:Variant.Symmi.50101

8.16.02.06.09

F-Secure

Gen:Variant.Symmi.50101

11.2016-06-02_7

G Data

Gen:Variant.Symmi.50101

16.2.25

IKARUS anti.virus

Trojan.SuspectCRC

t3scan.1.8.6.0

McAfee

Artemis!FBC9A66D172B

5600.6497

MicroWorld eScan

Gen:Variant.Symmi.50101

17.0.0.111

Norman

Salih.A

11.20160206

Trend Micro House Call

TROJ_GEN.R0CBH09CF15

7.2.37

VIPRE Antivirus

Trojan.Win32.Generic

38452

ViRobot

Trojan.Win32.A.Gena.1545680[h]

2014.3.20.0

File size:

1.5 MB (1,545,680 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\grandtheftauto3.exe

Digital Signature

Signed by:

Salih DEMIRGAN

Authority:

COMODO CA Limited

Valid from:

11/20/2013 2:00:00 AM

Valid to:

11/21/2014 1:59:59 AM

Subject:

CN=Salih DEMIRGAN, O=Salih DEMIRGAN, STREET=Abdül Aziz Mh. Şirin Hanım Sk. No:19, L=Konya, S=Meram, PostalCode=n-a, C=TR

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00D93C4C5A7797EED44FF4F38F7E699B06

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:hh160gm8ywK8ddxOU2xErBszUj/8kjzvpN8QkTx9jyApL:hhhwF7xO9QuK8nTnjb

Entry address:

0x128250

Entry point:

55, 8B, EC, 83, C4, F0, 53, B8, B0, 7B, 52, 00, E8, EF, F0, ED, FF, 8B, 1D, EC, 1D, 53, 00, 8B, 03, E8, 4E, 4B, F4, FF, 8B, 0D, EC, 1F, 53, 00, 8B, 03, 8B, 15, E8, 2E, 52, 00, E8, 53, 4B, F4, FF, 8B, 0D, 50, 20, 53, 00, 8B, 03, 8B, 15, D4, 16, 52, 00, E8, 40, 4B, F4, FF, 8B, 0D, 6C, 1D, 53, 00, 8B, 03, 8B, 15, 24, 19, 52, 00, E8, 2D, 4B, F4, FF, 8B, 0D, 10, 1B, 53, 00, 8B, 03, 8B, 15, C4, 1A, 52, 00, E8, 1A, 4B, F4, FF, 8B, 0D, 00, 1F, 53, 00, 8B, 03, 8B, 15, 20, 23, 52, 00, E8, 07, 4B, F4, FF, 8B, 0D, 3C... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

1.2 MB (1,209,344 bytes)

Remove grandtheftauto3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.