home

launchgtaiv.exe

SecuROM Launcher

Sony DADC Austria AG

This is a setup program which is used to install the application. The file has been seen being downloaded from s6756.chomikuj.pl and multiple other hosts.
Publisher:
Sony DADC Austria AG  (signed and verified)

Product:
SecuROM Launcher

Version:
0.1.0.3

MD5:
c0ef18417ad9f8a72269f7f757dba0c1

SHA-1:
aa1c57c9a65373d27995744f1bb55c6d2b25f09a

SHA-256:
f0c356343cbe5498d2b1f754de248d6b96c3a078850ae03177d933da0633433d

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/23/2024 7:57:06 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.6267

Dr.Web
Trojan.MulDrop5.15605
9.0.1.019

File size:
4.9 MB (5,109,704 bytes)

Product version:
0.1.0.3

Copyright:
(c) 2008 Sony DADC Austria AG

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\launchgtaiv\launchgtaiv.exe

Digital Signature
Signed by:
Sony DADC Austria AG

Authority:
VeriSign, Inc.

Valid from:
9/16/2008 3:00:00 AM

Valid to:
10/13/2011 2:59:59 AM

Subject:
CN=Sony DADC Austria AG, OU=Virtual Factory, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Sony DADC Austria AG, L=Salzburg, S=Salzburg, C=AT

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4BE2BE3FDD8463E4838F72B82732B8EC

File PE Metadata
Compilation timestamp:
1/21/2009 10:56:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
98304:m6syNdd/KDtfmuv5cjopR9kOMnNbERivqQ0B/iFP:m6syNj/Ise+joL9LMNo8vqQBFP

Entry address:
0x6EF940

Entry point:
B8, 11, FF, FF, FF, 8B, 84, 04, EF, 00, 00, 00, A3, A8, 17, DB, 00, 89, 25, AC, 17, DB, 00, E8, 06, 00, 00, 00, 83, 2A, C9, AE, 00, 64, 81, 04, 24, 3F, 00, 00, 00, FF, 34, 24, 81, 2C, 24, 3E, 00, 00, 00, 87, 2C, 24, 55, 87, 6C, 24, 04, 87, 04, 24, 8B, 00, 83, E8, 44, C1, E2, 00, 87, 04, 24, F8, 83, DA, 00, C1, E2, 00, C7, 44, 24, 04, C2, 04, 00, 77, EB, FA, FC, A3, 68, 18, DB, 00, 83, 3D, 68, 18, DB, 00, 00, 9C, 9C, 83, EC, 1C, C7, 44, 24, 18, 3F, 19, 34, 4D, C7, 44, 24, 14, 49, 00, 00, 00, 89, 74, 24, 10...
 
[+]

Code size:
7.2 MB (7,565,312 bytes)

The file launchgtaiv.exe has been discovered within the following programs.

GTA 4 RePack  by KloneB@DGuY
www.homedition.ru
About 1% of users remove it
LCPD First Response  by G17 Media
www.lcpdfr.com
About 3% of users remove it
 
Powered by Should I Remove It?

The file launchgtaiv.exe has been seen being distributed by the following 4 URLs.

http://s6756.chomikuj.pl/File.aspx?e=UjqWxH0XZ9mGeG2YMI6P8xUnheLpbyXX3dRLztURgrLwG-lAwNjam6HkQnuCE_V5LmNVRW4U1vs7ITXDyAexPqsFEQCPMV25K0paMxB8WEn5zZS7w1nmWDPjDVHAduCdy6mo_baAP2AyScNw83eN8Q&pv=2

http://s6756.chomikuj.pl/File.aspx?e=UjqWxH0XZ9mGeG2YMI6P8yP64JyWFkZ_X9apTgL0xobJtIEZfdpZDHmLin1_MrFkxBlEg-PybyDsBdJn_CxVuoQIath-bHVwg5tvnrLML6KdDezZatzzqKhoIqJe3BaCToMKvPCJGhduH41M_89pCQ&pv=2

http://download1645.mediafire.com/zlcxfxxjmsyg/.../LaunchGTAIV.exe

http://revpx13.chomikuj.pl/.../File.aspx?e=UjqWxH0XZ9mGeG2YMI6P8xUnheLpbyXX3dRLztURgrIfdoPUwkJ5Y3XyJnGGl26MRFqx3E85oBvUGoVGz_UWrAe3WrRLyNn_4YVGghwSYCtxWXR0h_7gTf5AyM5NRDXdZ8wkU40qZc9x-VS2KEgDvg&pv=2

Scan launchgtaiv.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.