gta_sa.exe

This is a setup program which is used to install the application. It runs as a scheduled task under the Windows Task Scheduler. The file has been seen being downloaded from download974.mediafire.com and multiple other hosts.
MD5:
6c6160da9b175b66cf9127c86be57bf7

SHA-1:
d56a414546e1eacdc0b2a692001ed338515f28a9

SHA-256:
403eb9ec0be348615697363033c1166bba8220a720d71a87576a6b2737a9b765

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/25/2024 6:26:03 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAutoB
1.3.0.4613

File size:
13.7 MB (14,386,176 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
4/28/2005 11:22:02 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.0

CTPH (ssdeep):
196608:lYUj6SDbU5wD74S/MgKHwuAoNyL3m58Bf5JAWL0D39C:lj6mbUev4S/MgKQuMVA

Entry address:
0x4245B0

Entry point:
6A, 60, 68, 78, 80, 88, 00, E8, 64, 41, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, E8, DA, FF, FF, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, 44, 81, 85, 00, 8B, 4E, 10, 89, 0D, 08, AC, C9, 00, 8B, 46, 04, A3, 14, AC, C9, 00, 8B, 56, 08, 89, 15, 18, AC, C9, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, 0C, AC, C9, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, 0C, AC, C9, 00, C1, E0, 08, 03, C2, A3, 10, AC, C9, 00, 33, F6, 56, 8B, 3D, 68, 80, 85, 00, FF, D7, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
10.8 MB (11,304,960 bytes)

Scheduled Task
Task name:
{0A2AA180-EC35-4D24-A1AA-8200376CD889}

Trigger:
Registration (Runs on registration)


The file gta_sa.exe has been discovered within the following programs.

CLEO v3.0.950  by Seemann
cleo.sannybuilder.com
About 1% of users remove it
Grand Theft Auto: San Andreas  by Rockstar Games
www.rockstargames.com
About 3% of users remove it
GTA SAMP  by R.G.BestGamer
About 3% of users remove it
GTA San Andreas  by Rockstar Games Inc.
Grand Theft Auto: San Andreas is an open world action-adventure video game.
1% remove it
Real Pool  by Media Contact LLC
Real Pool is a casual PC video game distributed through the Game Top download portal. The trial verison of the game includes an icon on the user's desktop 'Online Free Games' which links to a partner portal such as onlinefreegames.com.
www.GameTop.com
6% remove it
 
Powered by Should I Remove It?

The file gta_sa.exe has been seen being distributed by the following 35 URLs.

http://download974.mediafire.com/98bdtbrl9xug/.../gta_sa.exe

http://s8518.chomikuj.pl/File.aspx?e=s1X8guI2-x0ZfFmjrT9nAYM8P-jbnCBEFWN1U5mP8_JVjNpSc7CIp1edVOe3Zj0lKD-X0fjuZvnFCwbOPZVz7MOihs6Ud0KD3NlzwJLMbszL4zMR7VOtrEjxq0_oy1cD9ZCjMRuYf46zZDZqS4kfa986ZZzYN9MsO5tfCy-zMzc&pv=2

http://download1660.mediafire.com/k8yby0488rng/.../gta_sa.exe

http://download1612.mediafire.com/2vjb67o4iq6g/.../gta_sa.exe

http://s10566.chomikuj.pl/File.aspx?e=s1X8guI2-x0ZfFmjrT9nAXWAYR7hnmuNncNKfw7Mt1XE_l9aLdqza17ksp5iRS-UUjSRc41A6mdEKomzR22zAKNxLT6ou2tJ8aFjFTtKOoBF2f-DaDUhEQJi9x06iPhC&pv=2

http://download1853.mediafire.com/9jb7k18wrdog/.../gta_sa.exe

http://download1612.mediafire.com/q763r1rlf76g/.../gta_sa.exe

http://dc717.4shared.com/download/.../gta_sa.exe

http://download2051.mediafire.com/9lhfma2zz12g/.../gta_sa.exe

http://download1660.mediafire.com/yx77bkc9x88g/.../gta_sa.exe

http://dc717.4shared.com/download/.../gta_sa.exe

https://downloader.disk.yandex.ru/disk/1c65e35b26c8519b5078444492159f78a6d540486888db9654c5f45f2371b219/58028805/DGO0iV7mgxw3v7Php-p8SH6vynuqIQzftve41ayXFNL_lQ2h9x_0yY_6HSPWWcKKnX6xcqO6ROjRMeRjej7Mzg==?uid=0&filename=gta_sa.exe&disposition=attachment&hash=H6lvJ/S/.../x-msdownload&fsize=14386176&hid=5f1d9420503d205f272af898de6ec989&media_type=executable&tknv=v2

http://dc717.4shared.com/download/.../_5__gta_sa.exe

http://download1603.mediafire.com/0gghipsdseeg/.../gta_sa.exe

http://s8518.chomikuj.pl/File.aspx?e=jY2sunZ9i-UiTcfnNxK-549mW7x1LyE3j0uH7N4Q7_4EMDBnFiXQhlhCdxWxznPL59TdUASiRS1Bx0ihFF7BJTcOJEMIiJrSRVA_adkZAgHBYvSDtlYhb3ZTBzvIdeuU&pv=2

http://download818.mediafire.com/lo8rpaxa2q4g/.../gta_sa.exe

https://onedrive.live.com/.../MyKaZHUcaO3haGDJhTzwCkKTUQZlbXjHagp3QIbQ=0&ithint=.exe

http://10.233.233.233/data/download.php?dir=Hindi1/Games/.../&file=gta_sa.exe

http://205.196.123.63/jc7ifq6egx0g/.../gta_sa.exe

temp:gta_sa.exe

Latest 30 of 35 download URLs

Scan gta_sa.exe - Powered by Reason Core Security