» grand-theft-auto-san-andreas-8963-torrent.exe
Overview
Analysis
File Details
Downloads (1)

grand-theft-auto-san-andreas-8963-torrent.exe

INTIS

The application grand-theft-auto-san-andreas-8963-torrent.exe by INTIS has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from s45e.storage.yandex.net.

File name:

Publisher:

INTIS (signed and verified)

MD5:

d2d115b3094e4cf79e98341bd05e02e6

SHA-1:

eb6837d2420bdcd79d4db5666b34948921b34aef

SHA-256:

9d40043d5888d18d5afea9bddd0800551eac73c8ecc325ada15877e0d5bcc615

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/16/2024 12:00:07 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.FileTour.INTIS (M)

16.6.26.13

File size:

2.1 MB (2,235,848 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\grand-theft-auto-san-andreas-8963-torrent.exe

Digital Signature

Signed by:

INTIS

Authority:

COMODO CA Limited

Valid from:

4/16/2016 4:00:00 AM

Valid to:

4/17/2017 3:59:59 AM

Subject:

CN=INTIS, O=INTIS, STREET="Prospekt 40-letija Pobedy, 69, 1, 8", L=Rostov-Na-Donu, S=RU, PostalCode=344072, C=RU

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00E0D42565A341BEBE1BAFBF6CA79F6420

File PE Metadata

Compilation timestamp:

6/20/1992 2:22:17 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

49152:5b1nhFfbRkiPZn+DSHlCa4rIZ4vDUkukZied:5bHpbKip0Sa7IkujK

Entry address:

0x205287

Entry point:

57, 68, BF, 83, 45, 4B, 9C, 81, 6C, 24, 04, 84, 30, E5, 4A, 9D, C3, 5A, 0E, 82, 81, C1, 74, 83, BC, 00, 68, D2, 50, 60, 00, 9C, FF, 4C, 24, 04, 9D, C3, 38, E3, 12, B8, 00, 00, 00, 00, E9, 63, 0C, 00, 00, E8, 8B, 44, 24, 0C, 68, E9, 5A, 60, 00, 9C, FF, 4C, 24, 04, 9D, C3, C4, E9, DC, 00, 00, 00, F3, 01, 57, 89, 0A, E9, 52, 05, 00, 00, 45, 80, 3C, 01, 7D, E9, 76, 01, 00, 00, 47, 84, 65, 68, 18, 54, 60, 00, 9C, FF, 4C, 24, 04, 9D, C3, 17, 7E, FF, E0, E9, B2, 05, 00, 00, BD, DB, FF, E1, 68, FC, 53, 60, 00, C3... 
[+]

Code size:

2 MB (2,079,744 bytes)

The file grand-theft-auto-san-andreas-8963-torrent.exe has been seen being distributed by the following URL.

https://s45e.storage.yandex.net/rdisk/a7d77cb78e163901ce509c83519fdde3246ec1e1e58c6e02c14acb971dd27899/576ae1b0/kCBNab48i_OsWu3blWo5YJVQEFZxEMCdJtohU0f1ofcM9kEAij1EAoOIAZEmG7SCoY-Ekoaj1USeCDT7kQrCnQ==?uid=358708380&filename=Grand-Theft-Auto-San-Andreas-8963-torrent.exe&disposition=attachment&hash=&limit=0&content_type=application/x-msdownload&fsize=2235848&hid=d93c5db2afd1a0f19175a3a2c6ad6be8&media_type=executable&tknv=v2&etag=d2d115b3094e4cf79e98341bd05e02e6&rtoken=T9KF5jU8QQMT&force_default=yes&ycrid=na-010b8856824f7244e98d2872d2099472-downloader9e&ts=535e2a237cc00&s=e48e87c96e09159087b043993539aed1cdff61e17559a328860b6f8544453b61&bp=/7/.../data-0.18:29815005553:2235848

Remove grand-theft-auto-san-andreas-8963-torrent.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.