» gta5.exe
Overview
Analysis
File Details
Downloads (155)

gta5.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from am4-r1f7-stor05.uploaded.net and multiple other hosts.

File name:

gta5.exe

MD5:

e4ec37dd79875bb9efde424c04c09b03

SHA-1:

0abaa4aac14686381fee3947a9154ad1ce7ecf9f

SHA-256:

fbcfd8e277565e751fc427caf92339d117b0873ada01de65f758eb5de2c5c8ff

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

5/3/2024 6:13:11 PM UTC (today)

Scan engine

Detection

Engine version

Qihoo 360 Security

HEUR/QVM41.1.0000.Malware.Gen

1.0.0.1120

File size:

4.6 MB (4,784,790 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\gta5.exe

File PE Metadata

Compilation timestamp:

12/1/2013 9:08:28 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

6144:lHZL/SIftE/qD68wa3X7zfrX9Z7ANMzIlBe/vQN8hX7Cb31bazV41N1riP1:DL/SIfiqD68wan7njpIlBen81Vay13i9

Entry address:

0x108AF

Entry point:

E8, 9C, 58, 00, 00, E9, 78, FE, FF, FF, 55, 8B, EC, 83, EC, 04, 89, 7D, FC, 8B, 7D, 08, 8B, 4D, 0C, C1, E9, 07, 66, 0F, EF, C0, EB, 08, 8D, A4, 24, 00, 00, 00, 00, 90, 66, 0F, 7F, 07, 66, 0F, 7F, 47, 10, 66, 0F, 7F, 47, 20, 66, 0F, 7F, 47, 30, 66, 0F, 7F, 47, 40, 66, 0F, 7F, 47, 50, 66, 0F, 7F, 47, 60, 66, 0F, 7F, 47, 70, 8D, BF, 80, 00, 00, 00, 49, 75, D0, 8B, 7D, FC, 8B, E5, 5D, C3, 55, 8B, EC, 83, EC, 10, 89, 7D, FC, 8B, 45, 08, 99, 8B, F8, 33, FA, 2B, FA, 83, E7, 0F, 33, FA, 2B, FA, 85, FF, 75, 3C, 8B... 
[+]

Code size:

98 KB (100,352 bytes)

The file gta5.exe has been seen being distributed by the following 50 URLs.

http://am4-r1f7-stor05.uploaded.net/.../ba6f6658-b464-43a3-b488-511bdaf54d2d

http://am4-r1f7-stor05.uploaded.net/.../b664eca2-4d56-4023-8b5d-5c6d0fe5cf3e

http://am4-r1f7-stor05.uploaded.net/.../a6dbd8a7-3cb6-4e15-82bf-adb8782270c8

http://am4-r1f7-stor05.uploaded.net/.../b102fb0f-c87e-4c06-9909-8e3a45603e21

http://am4-r1f7-stor05.uploaded.net/.../acbc5235-d479-478c-9ddd-79630e0bfec6

http://am4-r1f7-stor05.uploaded.net/.../6a679aa0-f5f5-4698-a51e-5e51bac87431

http://am4-r1f7-stor05.uploaded.net/.../658afc3e-51c0-4190-8ccc-33b3ec9ed9fc

http://am4-r1f7-stor05.uploaded.net/.../87437abb-d159-4629-b521-f4dfe8bf2ab7

http://am4-r1f7-stor05.uploaded.net/.../6c303540-260a-4187-a242-6768dd78a1b0

http://am4-r1f7-stor05.uploaded.net/.../50d07977-f3dd-45c7-910d-79a8fcba2d71

http://am4-r1f7-stor05.uploaded.net/.../3a5953cd-bf49-4aff-8479-e52a16e23e6b

http://am4-r1f7-stor05.uploaded.net/.../b0f530d3-01f0-4217-a500-558879422ce5

http://am4-r1f7-stor05.uploaded.net/.../0dd755d3-da20-495f-a263-232413807c8c

http://am4-r1f7-stor05.uploaded.net/.../cf71b59e-07da-4f36-8a83-ec06c80cc5df

http://am4-r1f7-stor05.uploaded.net/.../0876fd14-299c-431d-a38b-2471e422c580

http://am4-r1f7-stor05.uploaded.net/.../d6eb6902-ce70-4236-b118-d36fa6b401a5

http://am4-r1f7-stor05.uploaded.net/.../1569d33a-7f29-4efa-9d26-8d7299421faf

http://am4-r1f7-stor05.uploaded.net/.../e2a85364-22e2-4cb1-91a7-8c31a8cc4ffb

http://am4-r1f7-stor05.uploaded.net/.../c7565630-efa6-4b9a-bc47-b4a068fea227

http://am4-r1f7-stor05.uploaded.net/.../a5d4f791-7ff4-40ac-8e77-50eef9f08e60

http://am4-r1f7-stor05.uploaded.net/.../02a342d8-05bb-407b-9700-ef33677d2336

http://am4-r1f7-stor05.uploaded.net/.../d71bc90a-fb0e-4131-81d7-cbfe18bd6ebb

http://am4-r1f7-stor05.uploaded.net/.../10824b28-2976-4ba4-b384-969e37cb6a0a

http://am4-r1f7-stor05.uploaded.net/.../4c2551e3-2e84-4b16-ac5e-f4aa4108d9a1

http://am4-r1f7-stor05.uploaded.net/.../2e63a769-c715-4675-b34f-117c79910cea

http://am4-r1f7-stor05.uploaded.net/.../2c8912e0-91a3-4062-9900-d10a14a32af9

http://am4-r1f7-stor05.uploaded.net/.../8af28406-baed-4d84-b7f8-fdc79596a21a

http://am4-r1f7-stor05.uploaded.net/.../b420d547-4713-4f40-be77-0701f4317604

http://am4-r1f7-stor05.uploaded.net/.../b5a54df5-26bd-4c0f-a91c-d472c5e4775a

http://am4-r1f7-stor05.uploaded.net/.../01e57ac9-bd43-4277-95b1-d20697485edd

Latest 30 of 155 download URLs

Scan gta5.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.