» gta 5 online money hack.exe
Overview
Analysis
File Details
Downloads (1)

gta 5 online money hack.exe

File

safe dOwnloAd Gtl

This is the OutBrowse Revenyou installer which bundles offers for additional third party applications that may be unwanted and installed without consent. The application gta 5 online money hack.exe by safe dOwnloAd Gtl has been detected as adware by 20 anti-malware scanners. The program is a setup application that uses the OutBrowse Revenyou installer. According to AVG, this software downloads additional adware offers during setup. The file has been seen being downloaded from get.downward1226.info.

File name:

Publisher:

safe dOwnloAd Gtl (signed and verified)

Product:

File

Version:

1.9.3.0

MD5:

4467f8623b794f74f4d851875cf6b1ad

SHA-1:

a8097bd37e72ca374542d7529f278f520921adf5

SHA-256:

a05dfda71f85393ccd7c8e9b221d5c60b6ce89038754ca2ccc6484c2593bd713

Scanner detections:

20 / 68

Status:

Adware

Explanation:

Bundles additional adware offers during download and installation using the OutBrowse installer.

Description:

This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:

6/27/2025 4:07:29 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Dropped:Trojan.Generic.13134325

5937142

Agnitum Outpost

PUA.OutBrowse

7.1.1

AhnLab V3 Security

PUP/Win32.OutBrowse

2015.04.11

AVG

Downloader

2016.0.3143

Bitdefender

Dropped:Trojan.Generic.13134325

1.0.20.500

Dr.Web

Trojan.OutBrowse.285

9.0.1.0100

Emsisoft Anti-Malware

Dropped:Trojan.Generic.13134325

9.0.0.4799

ESET NOD32

Win32/OutBrowse.BU potentially unwanted application

7.0.302.0

Fortinet FortiGate

Riskware/OutBrowse

4/10/2015

F-Secure

Dropped:Trojan.Generic.13134325

11.2015-10-04_6

G Data

Dropped:Trojan.Generic.13134325

15.4.25

McAfee

Program.Adware-OutBrowse.e

16.8.708.2

MicroWorld eScan

Dropped:Trojan.Generic.13134325

16.0.0.300

NANO AntiVirus

Trojan.Win32.OutBrowse.dqewlt

0.30.10.952

Qihoo 360 Security

HEUR/QVM30.1.Malware.Gen

1.0.0.1015

Quick Heal

Adware.NSIS.OutBrowse.A

4.15.14.00

Reason Heuristics

PUP.Bundler.Outbrowse

15.4.10.17

Sophos

PUA 'OutBrowse Revenyou'

5.12

Trend Micro House Call

Suspici.2955E6B8

7.2.100

VIPRE Antivirus

Threat.4150696

38950

File size:

1.1 MB (1,101,216 bytes)

Product version:

1.9.3.0

File

Original file name:

Ionic.Zip-2015Apr06-230129-00495dd5-a7e7-4748-9681-531b15c70557.exe

File type:

Executable application (Win32 EXE)

Bundler/Installer:

OutBrowse Revenyou

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\gta 5 online money hack.exe

Digital Signature

Signed by:

safe dOwnloAd Gtl

Authority:

thawte, Inc.

Valid from:

4/4/2015 7:00:00 PM

Valid to:

1/27/2016 5:59:59 PM

Subject:

CN=safe dOwnloAd Gtl, O=safe dOwnloAd Gtl, L=Dublin, S=Dublin, C=IE

Issuer:

CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:

29ACBBDA64644B8C4A8A3F9AA58C56C2

File PE Metadata

Compilation timestamp:

4/6/2015 6:01:29 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

12288:6Miy4IadS4ms5I6e66fEheKhpsJwIS7sdlnIT0uYV0cC1HBdzZmNs83L9lsfs3V+:6bSaE4mvt/opIVA0T+cCx8Np3Buk3Dw

Entry address:

0x75F3E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.5478

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

464 KB (475,136 bytes)

The file gta 5 online money hack.exe has been seen being distributed by the following URL.

http://get.downward1226.info/.../1428361292/1428361292?20892504324ZWVsLTc6cDkuNC4yOB5bOy00NDE1Imo9KisuLTgiazstJHBqZmJwY3BrX2ljPUtccnBwImF3al9tYVpsXG1hOkVQPystIk1pbGVrYydLb2ZcdyZIXWBpImRpZFxsXG1hOkVQPystIk1pbGVrYydLb2ZcdyZIXWBpImdjZ2U7LSZ2Zm45MCZbYztiZXAxNQ

Remove gta 5 online money hack.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.