» launchgtaiv.exe
Overview
Analysis
File Details
Programs (10)
Downloads (7)

launchgtaiv.exe

SecuROM Launcher

Sony DADC Austria AG

The executable launchgtaiv.exe has been detected as malware by 13 anti-virus scanners. This is a setup program which is used to install the application. Additionally, the file is typically installed by a number of programs including Ultimate Vehicle Pack v10 for "Grand Theft Auto IV" by ZZCOOL and GTA IV - Maximum Graphics from Cyber 3D Club by Cyber 3D Club. The file has been seen being downloaded from mega.co.nz and multiple other hosts.

File name:

launchgtaiv.exe

Publisher:

Sony DADC Austria AG

Product:

SecuROM Launcher

Version:

0.1.0.0

MD5:

3e9b3dc03cd5c2e658dd731b616fdcf1

SHA-1:

fe9249dc2e4f0dc6de3b17f99db18fb15de35294

SHA-256:

fb1764acec6f5587a3482a8a194bf7c6d2a646de6e8449bc1ea5e46b1d0bf649

Scanner detections:

13 / 68

Status:

Malware

Analysis date:

11/27/2024 6:28:01 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

HackTool.Crack

7.1.1

Bkav FE

W32.HfsAutoB

1.3.0.4613

ESET NOD32

Win32/HackTool.Crack.BC potentially unsafe application

6.3.12010.0

F-Prot

W32/Backdoor2.HMIK

4.6.5.141

K7 AntiVirus

Riskware

13.174.10609

McAfee

Generic.dx!3E9B3DC03CD5

5600.7257

Norman

Suspicious_Gen4.DLXWM

11.20140108

Quick Heal

(Suspicious) - DNAScan

1.14.12.00

Sophos

Troj/Sirefef-T

4.96

SUPERAntiSpyware

Trojan.Agent/Gen-Siref

10859

Trend Micro House Call

HKTL_GAMEHACK

7.2.8

Trend Micro

HKTL_GAMEHACK

10.465.08

VIPRE Antivirus

Trojan.Win32.Generic

24678

File size:

72 KB (73,728 bytes)

Product version:

0.1.0.0

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\rzr\launchgtaiv.exe

File PE Metadata

Compilation timestamp:

9/10/2008 6:19:45 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

7.10

CTPH (ssdeep):

1536:swtQvAxiiWBYUyS7zwknLJ7i19GGlbYv75AV:sw+oAXLLVMRlSY

Entry address:

0x8C06

Entry point:

68, F6, 8B, 40, 00, FF, 15, 24, 90, 40, 00, 68, FF, 8B, 40, 00, 50, FF, 15, 20, 90, 40, 00, FF, D0, E9, 32, 8F, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Code size:

32 KB (32,768 bytes)

The file launchgtaiv.exe has been discovered within the following programs.

Grand Theft Auto IV Complete Edition by Grosses_K

About 3% of users remove it

GTA 4 RePack by KloneB@DGuY

www.homedition.ru

About 1% of users remove it

GTA IV - Maximum Graphics from Cyber 3D Club by Cyber 3D Club

73% remove it

GTA IV + EFLC version 1.5 by Black_Box

www.gGamez.org

About 9% of users remove it

GTA IV Final eEvolution 2015 by ABAllA

About 9% of users remove it

GTAPoliceMods Mod Pack by GTAPoliceMods

www.GTAPoliceMods.com

About 8% of users remove it

LCPD First Response by G17 Media

www.lcpdfr.com

About 3% of users remove it

Ultimate Vehicle Pack v10 for "Grand Theft Auto IV" by ZZCOOL

About 7% of users remove it

Ultimate Vehicle Pack v11 for "Grand Theft Auto IV" by ZZCOOL

About 5% of users remove it

Ultimate Vehicle Pack v11 for "Grand Theft Auto IV: Episodes From Liberty City" by ZZCOOL

About 8% of users remove it

Latest 20 of 11 programs

The file launchgtaiv.exe has been seen being distributed by the following 7 URLs.

https://mega.co.nz/temporary/.../AJRTlZBQ

https://downloader.disk.yandex.com.tr/disk/f331addcbef7e5fca4953b84b8b82dd1d1bad7fb1fb784cd5027a69ab30fe615/57e315bb/zfZ7CYRkip5G49xsSqVAE5gJlHcfAFI7pXwWY40Boj1-8qJDzoXcwBhci6ZJOgDtYSwDJsqIDgqhhKhZj8VMlg==?uid=0&filename=LaunchGTAIV.exe&disposition=attachment&hash=5UCrk/1osxTq xk3cuhvc9e78UAsoRUsMPtdWye40Fk=:/Crack/.../x-msdownload&fsize=73728&hid=5d25f63f988f11fcba5586191eee2aa1&media_type=executable&tknv=v2

http://s10221.chomikuj.pl/File.aspx?e=eXrS8OR_EoWw42M0j7mwo_1PKF1qosoMlqFcMFW9aEoRFxSK2_TW-88KCq52AOK5Xeofa5VKp4_PkqVp-UpS_f6Kzq4k5dkWNoYD_PguPUm1bmiZ85C0pOxXsmfM4Li_Nh6ndGo-OTz66HUPNPQqqw&pv=2

about:internet

http://download1136.mediafire.com/7m3yq89zhc6g/.../LaunchGTAIV.exe

https://downloader-ams3.disk.yandex.com.tr/rdisk/c9f9466b75f699723f1d37e438fb37f9/54010965/zfZ7CYRkip5G49xsSqVAE5gJlHcfAFI7pXwWY40Boj1-8qJDzoXcwBhci6ZJOgDtYSwDJsqIDgqhhKhZj8VMlg==?uid=0&filename=LaunchGTAIV.exe&disposition=attachment&hash=gzMPDLC0lYUZK03ZX4sqLy77bR8JrCygLdv4nuGYxDY=:/.../x-msdownload&fsize=73728&hid=5d25f63f988f11fcba5586191eee2aa1&media_type=executable&rtoken=6a1fa001b24c00653f65b35372794a91&rtimestamp=5400d125&force_default=no

https://downloader.disk.yandex.com.tr/disk/c9f9466b75f699723f1d37e438fb37f9/54010965/zfZ7CYRkip5G49xsSqVAE5gJlHcfAFI7pXwWY40Boj1-8qJDzoXcwBhci6ZJOgDtYSwDJsqIDgqhhKhZj8VMlg==?uid=0&filename=LaunchGTAIV.exe&disposition=attachment&hash=gzMPDLC0lYUZK03ZX4sqLy77bR8JrCygLdv4nuGYxDY=:/.../x-msdownload&fsize=73728&hid=5d25f63f988f11fcba5586191eee2aa1&media_type=executable

Remove launchgtaiv.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.