home

gtastoresetup.exe

GTA VC Play Store

The program is a setup application that uses the Nullsoft Scriptable Install System installer. The file has been seen being downloaded from grand-theft-auto-vice-city.turbodisk.net.
Publisher:
GTA VC Play Store

Product:
GTA VC Play Store

Version:
4

MD5:
b3e842e6a30234156b8682cbe0040575

SHA-1:
e75bde06327eb43623dd481716c3dd2795d08139

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/17/2024 5:16:27 AM UTC  (today)

File size:
1.1 MB (1,203,817 bytes)

Product version:
4

Copyright:
NSIS

File type:
Executable application (Win32 EXE)

Installer:
Nullsoft Scriptable Install System

Language:
Language Neutral

Common path:
C:\Documents and Settings\{user}\My documents\downloads\gtastoresetup.exe

File PE Metadata
Compilation timestamp:
12/6/2009 12:50:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:2IEdMAyllaFKUAaCRaVNe0x7P3PyMcs+H9YqBPSWKqYSNcgxBw/b3mXxLmkvbQly:2IkOL9Rv0xLfmrHuoSR1gzwT3mXxaFLG

Entry address:
0x30CB

Entry point:
0F, C9, C6, C1, 40, FE, C9, 80, C7, 14, 35, 45, BE, 00, 00, F7, C1, FD, F5, 6F, F7, 43, EB, 06, C7, C3, F6, 2E, 66, 2C, 84, E9, 0F, C9, 8A, EB, FE, C6, 68, 2F, 00, 00, 00, 8A, F0, 5B, 19, F1, 81, F3, 0B, 00, 00, 00, 69, F2, 40, 87, 8F, D5, 53, 0F, CD, 5F, 33, E9, 81, F7, 26, 00, 00, 00, 0F, BE, F2, 8D, 07, 88, C2, 69, C0, A9, 03, 00, 00, 39, CE, 8D, 15, BF, 28, 0B, A0, 0F, B7, FF, 2D, E6, 01, 00, 00, 8A, FD, 05, E5, 01, 00, 00, BF, 3A, 6D, D3, 33, 84, E8, 87, F6, 3D, A1, 00, 00, 00, 73, D9, 47, E8, 17, 00...
 
[+]

Entropy:
7.9045  (probably packed)

Code size:
22.5 KB (23,040 bytes)

The file gtastoresetup.exe has been seen being distributed by the following URL.

http://grand-theft-auto-vice-city.turbodisk.net/GTAStoreSetup.exe

Scan gtastoresetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.