home

icreinstall_grand-theft-auto-online.exe

Cir

Destiny Dream S.A.

The installer utilizes InstallCore which may bundle about 3-4 offers for various ad-supported toolbars, extensions and utilities. The application icreinstall_grand-theft-auto-online.exe, “Cir Setup ” by Destiny Dream S.A has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the installCore installer. It is also typically executed from the user's temporary directory. The file has been seen being downloaded from www.appstowncity.com and multiple other hosts. While running, it connects to the Internet address os.solvefile.com on port 80 using the HTTP protocol.
Publisher:
Minuho   (signed by Destiny Dream S.A.)

Product:
Cir

Description:
Cir Setup

MD5:
e99513e12ae89321770299666852cdf2

SHA-1:
afd400d2dc30d0c3d635baeb3e6a2cbd0d9aea45

SHA-256:
3e23bc27c8dbd321dd0a5b8327e4f3ad6f6347028368235d99b4269eafa5749d

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Utilizes the InstallCore download manager that may bundle various adware-type offers.

Description:
This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:
11/24/2024 5:27:01 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.installCore.DestinyD.Installer (M)
16.3.27.17

File size:
1 MB (1,078,040 bytes)

Product version:
4.7

File type:
Executable application (Win32 EXE)

Bundler/Installer:
installCore (using Inno Setup)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\icreinstall_grand-theft-auto-online.exe

Digital Signature
Signed by:
Destiny Dream S.A.

Authority:
GlobalSign nv-sa

Valid from:
12/17/2015 7:55:11 PM

Valid to:
10/2/2016 8:36:18 PM

Subject:
CN=Destiny Dream S.A., O=Destiny Dream S.A., L=Clarens, S=Vaud, C=CH

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11217A75EB912AE2167326222C18D9E2357F

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:ubmjb2rfYLfQazIgBOg5h3bMqDyrRupNCMvE6G1NFYZVSmc8AR:uS7cazIgBOg5dbLyZMcoJu

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Entropy:
7.9068

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

The file icreinstall_grand-theft-auto-online.exe has been seen being distributed by the following 50 URLs.

http://www.appstowncity.com/c?x=L2zSYUyRKqC7OSrAzSGoR2yHl5cogNDSiYYqHCZ8i8A=&c=CAi8UbQQILcplv0 wzRKv9lY3jbVccPBO2y6/2R/1TIv1gDuGWrzZStL UtTyz8y5 uqHbMJ0WdiDGQnrPss3lPyll wjZgH5n9sNSm63ZJHXI8MFWWRQIggyC/FMy6dHSNuU1 sa6d5mGQjIlrieg==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.vaultsdeliverycenter.com/c?x=NjKA65onl6Hdm6onSuxcp/95z1NcJOvviXge4B5nCVs=&c=M/Ba0HmtrHIqeIWICNJd1tIMV/66Qh5PvRHLXBZHiXeXr j2M1VhB6RduY5QqoJvkr1rvaP yKLpDXTeSakceNwpdKBe 4VxXcLRCwQ9q/LX 7T0ZyNJXDxh9SB2SgLJCkV2JQ7AbL1mLeTdyG7KVq1O/f3jqggZbVBGnHgXAtg=&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.appstowncity.com/WVl6OTRQVGcyYkd0eVVITmFkRTFxVlU4MVJXMWFOWEp6YjNoVlprNGxNa0ppYVV0Q2JHbzBURUpsT0dsMFZ6SjVWU1V6UkNaalBXOGxNa1pJZFdwTFdqTXhaRVJSUkRRNGIyRkhURFJTUVZCS1Vta3pVVkZRUlRKaUpUSkNTRVpDUkdjeVlrSk9XVzEyUjBSUWNVWkRUU1V5Um5VelMwZERjRmRLY0RKYU1ra2xNa1o0UW0xVVUzSlBXVzkyTnlVeVFqZHRkRlV4U1hsbU9WTXhWMU5pVmtwbldFMXJUWG94ZFRCcFdETjNWRGx1U1RocWNDVXlRa1pQZEhSaU5ESkdSMEo2VFhoNlRqQnpObTFoWmtSS2ExRTVObXBQYTBaWlp5VXpSQ1V6UkNabFBUQW1aRzkzYm14dllXUkJjejFuY21GdVpDMTBhR1ZtZEMxaGRYUnZMVzl1YkdsdVpTNWxlR1VtWm1Gc2JHSmhZMnRmZFhKc1BXaDBkSEFsTTBFbE1rWWxNa1ozZDNjdWNtOWphM04wWVhKbllXMWxjeTVqYjIwbE1rWldKVEpHUjFSQlQyNXNhVzVs

http://www.vaultsdeliverycenter.com/c?x=HcwsJC515SA5vcIHVmkAO8U/GjQmKG5AplGMF4UlhQc=&c=5xxKYYRY0wc4lUGFDxivuWFm2IjVzofK6ttfe2kPh2z/ehrj9tlGcOXQh x38y2nxdJ4ZpxzdBG7CWfh5sn6nP5hsQd5ORWqa2EgY4Re/tdwPqY19LADmGMeHQq1axh5ptGL8Tz5JYBZ2wBFt1s 5buu9vXAAkxjmWIWh1YUYwkKVDjBi6jhMHtmoKc6ZVJh&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.hostingtagbody.com/c?x=HR9Wxrrd9jawsMxZvTdrlfhUykJjc8mp/6hm63nPLYg=&c=MlF/aHvTfH8AliwLL kEPtcgfnE3FGqPQQkib/lRaBxylx3166/zCBOv8D9ofA9069W6oTW TO6S214Xv3AR9lVrwJ3cyOXLcjaoWp5u8Kz0fTafT23l/y3T7VfWdhHCykoECs6W2x68sYoUD9SPYw==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.signbundlefactory.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

http://www.signbundlefactory.com/c?x=rGc4CH1SJrOyCdGGkJmOhDir38X9LbNyF8BW0Au6pTc=&c=g5NLrUYNmPj0ySiGLKDBpEhojPgS g0Nkt7PRQbFUiCy2xWDviYgQawoWM72DgsExvW1KtyFnfHFMQ1TOYRxj31f8HfQh9wDDa foxxe4bV8B UQAOTTR8Y2IxMleZ3Gqga2/XXZpq7IMA 9eP2WTfaBskZgMdHCtQOrTru7ahE=&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.signbundlefactory.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

http://www.signbundlefactory.com/c?x=/hnCgBVfLERL9jS633CRsf47Gc5oRwwMbcryfX0bL M=&c=/xm94oyOImQ6aS/oiSRHJaJ3DlF0jvS IxzgCkl9vOrDU5cajDsoQdahSqtTT21mRQ GLfyCKnSn9bikXpYPoXm9bm/1a c/dYCOf9JIiqlfVIwKUZCM3VinM89Byts6T8SPMf9NzUqmoSyj9cb4FQ==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.vaultsdeliverycenter.com/c?x=iLBniv5 j3Zm7SHVqIU7QuJ/tJsy3mV/ONyEygkHI20=&c=AdefFexGhxtqdJGwJ8Zh 5UHS rosWrDEK9/wdSTacz9pK6dex/YmZ5RCNNDHMghXCKQ2VAKZYHqMRJ41m3uhI514BNKCT1pwWmfzXOu a0HpxfcrvOhW879xIQhdwbZT3O2EYTEKvISQH4 CNbrA==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.hostingtagbody.com/WVl6OTRQU1V5UmpWa1JEaFNjakZxVFRka05FNVlhblJHVlU1MmFreEtiRlJXWTFwNlFVNVFWakJGYkZkUFFWcFdheVV6UkNaalBTVXlSa1V4YVhaTk16SlBhVEJsY0VGeGRFMXJSWHB6WTAxQ1Ztb2xNa0p0YUd0alIyUkpNMWxyUm5kSFdDVXlSbUZvV2t4b2VWSmhVVXhyVlVGa1VuY3dPRzVGY0Rsd0pUSkdkbVpQVVZsU2JYcFdZMWRyUmtNM09XNW5VRU5ZVkZKRWIzZEdhSE5TYjFKeldFbDBiblJuVFRCbVRuSk9RU1V5UmtaR2JXNUdZbmwyTW05Q1RGQTFKVEpDUTB4blNsSXlSRVZzSlRKR2FVbHlXWGhwWkUxdlRFRkJKVE5FSlRORUptVTlNQ1prYjNkdWJHOWhaRUZ6UFdkeVlXNWtMWFJvWldaMExXRjFkRzh0YjI1c2FXNWxMbVY0WlNabVlXeHNZbUZqYTE5MWNtdzlhSFIwY0NVelFTVXlSaVV5Um5kM2R5NXliMk5yYzNSaGNtZGhiV1Z6TG1OdmJTVXlSbFlsTWtaSFZFRlBibXhwYm1VPQ==

http://www.cleandeliverytour.com/c?x=xqA0qT1p/ZCXxr9/sQiUlnr8DxMCGBiBlkYLkuGjjqc=&c=j9YbVxLA5RrzqM146NmNtPMKDwO5EF4t6NZ1sWLPMWl5XmHXZR4L17e5OteSjVNAyxO31kyKbDoBeLFJdgMrapVP9VKV9iPz7knZ2hK940iqgDFPKGKS2j165agMBhWp/DiW4Or D1igPypotO2DtGc8KtlGH8oZo0t33EzexmqF62RIuBr2eGGyyCUvTe5d&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.conceptsbinariesbundles.com/c?x=K1qvIqdUEauu1YuJbxnwEj6nsQHFNkPYtdF0oICroB0=&c=2gtB3jciNGt TEAx9jaVN/FJpGWzufJ7poYZO429Qp pyTVwK EGnQ19QV80cxuI5rxq0/7RSPeQPWF1V82x5adVQyn 5bUzvz6GyeUDPCkr7EKXj5O2/Kayui7o26xlG64TAzbTvPXDCGKTsIbkw==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.cleandeliverytour.com/c?x=WHdjo9kTT6UmeCVGm5CV9BXOOnPY0ra4fucLIdBwXvo=&c=comulR9HHAB83NF8HDjDiD5S7FJgA0JqiochHHBP/Vm3Cw67Abye4AU0QMzxrv4s uURuuBKnJw3oC4m3Has9b7 XKDHn9smVRvRlAAcs6GfcG/ndpZPDpn5sbbnIXaiFaStPXCnec3LtSzIjsram8YYYzG88k F6R0h2a3CbKNKrNixUIwWp/jdzdvwmcDf&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.appstowncity.com/c?x=6S0imJfYP0Irlxh28ub4e qelDPp79GHIj0JHsHDGJ4=&c=KPpiMSfPik2DccDeZf1260Cgc10h8Q0a92PKmqHwhRIhSheIa/YG67tQ0QGbg78dDhBNpl8J1ojqunnZaeIyv 4p4IXsg9WThzIebXRoOrgYdTOOQH5vubX/JMT7Zp2KbIZbWM4DNe0pmXnpwLQVKw==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.signbundlefactory.com/c?x=VDYTN45DbUCb3HJubBrcFTSMWzngdj2ZGVtb0ocdmV4=&c=EHAB e9iZjQeDUfzSkOJ3vFOarFN/CDF4LSjMVcYzH3LKe5t5 83l 2LcsFwcBHz5NmvFAnX8mbVKM5J 3QV83wPeQpZEaTLp K8yzfsQ58HeZWGhaOI0Jxa/AaKjnHWIeEr8upkM1 R0cbNdgacQQ==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.vaultsdeliverycenter.com/c?x=IJjsgByuavIDo5ZIeoodgVvg6nu//Y3OJEKeChygS78=&c=VwSYP8ZirN 0dF9ZS/mxDtp5PRB rnO2r80QcqZqlfu elHuqhkUIE0/rAFhWVeE31s6kCcCPUbkSlxwBBpQHJY6NQjOCITnNHxjd2hjLAvnh7JUvPBiOxpMVaSiQqinbHkgO4H7ESQ4tVwZMIhhqTYgXSbhYAg50exK7Z9ZRbVEid4ApnQ38acghMbzWsJB&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.conceptsbinariesbundles.com/c?x=pkFzH19 qMGYrHFD8WLUuichwfIlx2NtotlDpfFDgu4=&c=ZMlaKvaBguZhpSLTsWH8MZytBXqbPWvTLX/hPW1ISW7K49UHOCuDEBtwIcP3OWRjb9ZIP1pBvgbvoRuEzJNd33qQ5T2i9qRhYYaJ1yxMaQK3svs2WteSc4kJh/rd5f6wQupaC 3CgLLsLKEAMR40UPmpLOTjyjtcmKCgp8REYuI=&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.cleandeliverytour.com/c?x=CBFboW8lMI3TB6e7rYVrReHglZIZDt26VyjCAWA2XYc=&c=ijFSGSQ/3NE7jcsTXVWkb opq sphqhf5di4vFY1zhur/cl3ZNzll W9MjHSpmcrAUE2ujnmDLcUPmpfjEMSDwQ6Vx5t1lzZC93Vl BDH7Y mQYc9Zi4JaO6Prv4FFPJIZkyVoSlfXLa9hQk/OqhBQ==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.vaultsdeliverycenter.com/c?x=7HhnfbqTw/it578whYDoGqpBW1pbU78vOQ/axjOjxzg=&c=0s7LUyJzN4gka/qS8VItJsFPmsx93UEK5jLcIYMPB9fco7QHo8pB fLVfNTZa7WRRUSxpDiBdD1d/XML1sGR/MQi1zfnsQJkPs7evZ/fhMlOsq9Z84CjJlfRUk0CxwELC5DxIown5rp4s67Pd6SSuhyBKdYn4flfiHDCV5xBS/0zmtNrFMfE/wS3pSlRM1eQ&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.hostingtagbody.com/c?x=gsNr9YqnqX qX/7vCVXTC3mL1r4LzBRFrP lqibtm4Q=&c=NzefYOiAxadYyf9NgsUtWMdJFU1wyMX5TNHprc06MLc2w8frvEXCyTiL3iWJIJ8i4f1FfNTbhGmjQyMONgJ3PxK6DXk9qEmlQtbTZjdlj3b3H7Kky/VDWrD5kiMUbfmKXpLNP1gQjDM1fT3peeBxQtuqFUoM1KrC1/90ai4u4VZnHfyKkW5XAvHiKL7l47nz&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.cleandeliverytour.com/c?x=Lmb/Puj2J5b5/ fEdt2Hn0O9oYSi7Yc8yyzfspoRPBQ=&c=9AMLTBhbL3Y/Vkpb kJDO5vhE73pIXv9hp5tGwd6nRfuU2CLHBImg2QQFNw3RwF8iFhAn2CzxtCPN6 ijmbmfJa1r9y2pFjFE8eJjs/CeJUBVlvXAWr33LhwuDKtu7ZSBo0voNOfQNtVtr0Ap915AyHBQS6BqhUK6UTmqz/dqyQ=&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.vaultsdeliverycenter.com/c?x=WUSslhJxnekZUga1F95nrgV3k7lu8TimDd jwfqr3EM=&c=j9xa/MwXzbKacw/l9Bjy8EwHXb/f0kHVjDBBiAzpnB93yJWVBdPq0bgprYgmbMGzlxmSSIuk5Xfcpb7rPI6bQRgZsbAEerQVAUGnIAp2JA9nskBzUZ8Bhum MmJK/iUFLWJ/NCNEaFoIL3MtfK61xg==&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.cleandeliverytour.com/c?x=3tod/ Xe72SHj uc0PIzq58XF/PoVtGv0FEH/KuHvaI=&c=TqA431lsf70/zvdZqVxGOYaYXXV845kEqoujmBbWmFfJpd4HTtb5n54fJncahZoB4sC6JByiseQtEwf2n33vpPegXRdj7JhJj/cIXe6ONYY12rYI48Svl7x3OFkJyiSUI8KsnPxxUdw8BcP6g5EjGrMBg9o9Ot7RRD JvQMKEhmuNZe7S1A90gH5 8IK2cQs&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.signbundlefactory.com/c?x=biVEJpO7Iy6izAxrEgM2y1m5ZVsBGoNP57LRgetKFlM=&c=8hL7WhMXZvMIqqvMtIjbsibeCcsUAZa5mX3v174VjYTDE3Jj7rezAiNhgkPA4fP4vIgNVOv7yBnn0YaX77LvwlDa2PqCFC2QTrzOQubAM3ULSHos/FFoP/iFHvUmFOa5KjYClm6lrkRYt6FluIa0HMGyFx6UWDs7T6wiLwUjDq2ez7001aXr4QeLT3 7wi4H&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.conceptsbinariesbundles.com/c?x=WzjW8jgoRKRTxvSnAUZ G9 vlquhQuk608FI6r9Kkcs=&c=Bv9S9i861T0jn6PoOIc1W o1P1t2UAOs1D6zSvUgXCFE8601oUgxzum5J LObFGf2//1IkrZFuOixrvzLemnYCFgzThmqx1ddXsT3yQ3R1mXSKezG9peadi p En CruZ5i /ilAtPkTuVc7v8l9YM4KEhPZNbw3OmGuRiZUmH16E4 oNM EWu8h/YzpP ii&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.cleandeliverytour.com/WVl6OTRQVWhhY0hwaVlUTTNTMFE0UlhKMWRtVmlSblJYZVRFeWNURkhOME5pUlhOdU1WRTRKVEpDT1RsV1kybHZRU1V6UkNaalBVaGhNbXBJVTB0VFRHaEtRVlZwTm5sRWJWcE5iREZHVVhsd1pFTmhWRkEzUzI1aVRIcEZiVk5sY3pkMldqUm1aa0ZDVUZoeWExY2xNa1p4Y21Jd05HOW1NRVJtT1daWFREZEhXVXRUT0RabGFVdGthVTVsUTBFNU1HWmFOak52Y1haNWIyVkJRbU4zZURnbE1rSkVOelZHVlZoMWNGTndWM0pwVjJ4MGNtRjFZMFZzUzFodFRIcHFNR1J4Vkd0bFRWQnBZVWd3U1VKTldGRWxNMFFsTTBRbVpUMHdKbVJ2ZDI1c2IyRmtRWE05WjNKaGJtUXRkR2hsWm5RdFlYVjBieTF2Ym14cGJtVXVaWGhsSm1aaGJHeGlZV05yWDNWeWJEMW9kSFJ3SlROQkpUSkdKVEpHZDNkM0xuSnZZMnR6ZEdGeVoyRnRaWE11WTI5dEpUSkdWaVV5UmtkVVFVOXViR2x1WlE9PQ==

http://www.vaultsdeliverycenter.com/c?x=FD/DO1DA5nx6sMrAXXyIezH/NbaRcg2hf28JWpDw yY=&c=N1BnF/00RBZCi u9uQU76smETWa1etrN6JbvyVGXLotHKljTwkG1sVh5/OzO42HEC2qlm2H98lQ0bFYYqFzpqHTzNJDVKsh6z8ywjgD/PXEhQI7wllauybhv3ZkbTKkOcA0gjr71uoZZHUzJC0D7eafgsCLwvGnpNh/L//U5G7fHl/txGFV5vI5xvEF/lulz&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.appstowncity.com/c?x=DHXUbrtTQ2jIwvUTT9AmAN94HkJfSGxkijFdMg3MXF0=&c=k0PhGEYk2/jHzDDpdJkX266zohqBQDlLhMI1DpCpQ6IHdgfRF52hH5Yw7aSYUEibIE3kZSnszXSsd1tMtUtsj/BhgZRCDwivyOeSRjedWTLF7tB3QZXDPTDSLM1HMuoXvKRxHvd3zGwgQKkXRZOcP9fruLNrOGqX61bjipLg9uo=&e=0&downloadAs=grand-theft-auto-online.exe&fallback_url=http://www.rockstargames.com/.../GTAOnline

http://www.conceptsbinariesbundles.com/WVl6OTRQVTVYV2xwWE5rbFpORU5PVUhsR01rSjJVVzlUTUNVeVFrVXhiVFJ6VTBGQmJXcHZVR2dsTWtaMU5WTnNaMHh6SlRORUptTTlVVFZFYXpaRVYybFJhREpTTTNwR1VXcHdKVEpHVEVJbE1rWTNjak5XUkVwQloxUnhZM1JMSlRKQ2RGUjZlRGxQUkhCSWREUnBSVVZtT0RSRFpFTXpjR3B5V1c1Wk1qWk5abFkyU1ZsaWREZGhka1ZMTlhKVmVUZDViREI2ZGs0bE1rSTRNMUZQZEZkUmN6QnhRV1pPVTA1emRuaFNSbmxtVURWQ1dXTlRhMmQ2YWtSa2FIb3laazE0VTBoNlkycHhObFpRTTJFeVpGcHpVVTVRUkhjbE0wUWxNMFFtWlQwd0ptUnZkMjVzYjJGa1FYTTlaM0poYm1RdGRHaGxablF0WVhWMGJ5MXZibXhwYm1VdVpYaGxKbVpoYkd4aVlXTnJYM1Z5YkQxb2RIUndKVE5CSlRKR0pUSkdkM2QzTG5KdlkydHpkR0Z5WjJGdFpYTXVZMjl0SlRKR1ZpVXlSa2RVUVU5dWJHbHVaUT09

Latest 30 of 64 download URLs

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to os.solvefile.com  (207.189.109.121:80)

TCP (HTTP):
Connects to cdnus.solvefile.com  (207.189.109.121:80)

TCP (HTTP):
Connects to cdneu.webfilescdn.com  (65.254.40.36:80)

Remove icreinstall_grand-theft-auto-online.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.