gtaiv_patch_1030.exe

Take-Two Interactive Software, Inc.

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from s10092.chomikuj.pl and multiple other hosts.
Publisher:
Take-Two Interactive Software, Inc.  (signed and verified)

MD5:
d78ef578d5044fac50a30480f47ca1d3

SHA-1:
b064f24ac6f14d581001d76f967eb98040877761

SHA-256:
2c3cc655799ae17454e3b94402e5e9b9b6d0ee9e77ea86f0bd2006e14b6f7eb9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 3:22:20 PM UTC  (today)

File size:
54.7 MB (57,380,616 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\Program Files\rockstar games\grand theft auto iv\gtaiv_patch_1030.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
9/22/2008 3:00:00 AM

Valid to:
9/23/2009 2:59:59 AM

Subject:
CN="Take-Two Interactive Software, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Rockstar Games, O="Take-Two Interactive Software, Inc.", L=New York City, S=New York, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0C56410E7A8CF26E7F1F306FFCE670CC

File PE Metadata
Compilation timestamp:
7/21/2008 11:54:32 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
786432:sXfjAMt4dyGASZ6gc8GOQTwMWN5QqHxdCJjkC2TNH+ThxL7NFK/5xLXCvSpY3T:sNt4kJR8JQOigCJj0TNH+xm/HSS+3T

Entry address:
0x340C

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, 70, 85, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 80, 40, 00, 55, FF, 15, B0, 82, 40, 00, 6A, 08, A3, 78, B3, 47, 00, E8, 6C, 26, 00, 00, 55, 68, B4, 02, 00, 00, A3, 90, B2, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 6C, 85, 40, 00, FF, 15, 80, 81, 40, 00, 68, 54, 85, 40, 00, 68, 80, 32, 47, 00, E8, 3C, 25, 00, 00, FF, 15, B0, 80, 40, 00, 50, BF, A0, C0, 4C, 00, 57, E8, 2A, 25, 00, 00...
 
[+]

Entropy:
7.9978

Packer / compiler:
Nullsoft install system v2.x

Code size:
26 KB (26,624 bytes)

The file gtaiv_patch_1030.exe has been discovered within the following programs.

µTorrent  by BitTorrent Inc.
µTorrent is a is a free, ad-supported, lighter-weight BitTorrent client designed to consume less resources then the full BitTorrent version.
www.utorrent.com
12% remove it
Publisher's description - “Pro Evolution Soccer strides back onto the pitch to showcase dazzling new skills. Pro Evolution Soccer 2013 returns to the roots of football with unique levels of control plus major emphasis on the individual style of the world’s best players.”
www.konami.com
2% remove it
Razer Game Booster  by Razer USA Ltd.
Publisher's description - “Getting the absolute best performance out of your system and games isn’t rocket science but it can sure be tough to figure out. In partnership with IObit, Razer Game Booster is your simple yet powerful solution.”
www.razerzone.com
4% remove it
Rockstar Games Social Club  by Rockstar Games Inc.
Rockstar Games Social Club is a free online service provided by Rockstar Games for use with their latest generation of games. Rockstar Games Social Club provides certain different features based on the type of game. Allows users to find tracks created by the community.
socialclub.rockstargames.com
9% remove it
 
Powered by Should I Remove It?

The file gtaiv_patch_1030.exe has been seen being distributed by the following 15 URLs.

http://s10092.chomikuj.pl/File.aspx?e=_WPS2RQgfJTltA7iPtfh6CjjCaMNpEV_6-Wst2cLxjJlqJ17JcAB0DzEP8kmbIS11z2nMfEGjbSkviMqiHWMcOwPY1N5ZRr4RbpWGaC_O_Z5PcS_wfimYl2ANdbrdndSExemG-dp2dMHf-o3WnEAig&pv=2

http://i.download.idg.pl/fannef/283c906b21bc7ca3f9e328d9d73a389f/580242fa//zx/cyberjoy/09/03/.../GTAIV_Patch_1030.exe

http://s6757.chomikuj.pl/File.aspx?e=_WPS2RQgfJTltA7iPtfh6NmgOjSTSptwKoxSB9mmOkqLpN6dFHjNuljKBxD-iXDpNQ06_KxiIcLZXi78RDLwyFZwfZQgDXb6zZnc78Qo8lgyXsbgOfI1orCeIknpSFGjQ5UMVRZ1PVXLBB-zq5E4qw&pv=2

http://s6757.chomikuj.pl/File.aspx?e=_WPS2RQgfJTltA7iPtfh6Md2UxJRuGPKddy43ci1j72YQzGOgAfgYSCbvzXom_GsnygP9WHPXAz9lGTOBDPqLutX5xcOD120w9n-1M4Fxq6JqUpGwz-cNRlDJAaHM8sMb9RrfuYIftfPF3GzuOV8EQ&pv=2

http://pc.hrej.cz/servis/.../?id=18155

Scan gtaiv_patch_1030.exe - Powered by Reason Core Security