home

mafia2_br[www.gamevicio.com.br].exe

Mafia II Tradução BR

GameVicio Brasil®

The application mafia2_br[www.gamevicio.com.br].exe has been detected as a potentially unwanted program by 7 anti-malware scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer, however the file is not signed with an authenticode signature from a trusted source. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from static.gamevicio.com and multiple other hosts.
Publisher:
GameVicio Brasil®

Product:
Mafia II Tradução BR

Version:
1.02

MD5:
b3f4a7bbba39e6d3dfc966a1c1057b0a

SHA-1:
3f660e515de53b418ac7726db5cdab03dce95d0b

SHA-256:
196dade479e97aaf0061b40989b1d9d7df231e7d1cf712f2d7bedf1196710bdc

Scanner detections:
7 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
11/17/2024 12:28:24 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
PUA/InstallCore.1806801
8.3.2.2

Clam AntiVirus
Win.Adware.Oneinstaller
0.98/21511

K7 AntiVirus
Trojan
13.211.17575

McAfee
Artemis!B3F4A7BBBA39
5600.6605

NANO AntiVirus
Trojan.Win32.Genome.dtleee
0.30.26.3947

Trend Micro
PAK_Generic.005
10.465.21

ViRobot
Trojan.Win32.Agent.4227072[h]
2014.3.20.0

File size:
1.7 MB (1,806,801 bytes)

Copyright:
GameVicio Brasil®

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\mafia2_br[www.gamevicio.com.br].exe

File PE Metadata
Compilation timestamp:
12/5/2009 8:51:56 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:x2UH7VFtdJ+U+5p8JRoVx9ZBIoy9C8Q85AC+Bpxl+:x2KfJ+U+5EoP9ZB9yD2tu

Entry address:
0x323F

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 98, 57, 7C, 00, E8, 09, 2C, 00, 00, A3, E4, 56, 7C, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 84, 7A, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, E0, 16, 7C, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, E0, 7E, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file mafia2_br[www.gamevicio.com.br].exe has been seen being distributed by the following 22 URLs.

http://static.gamevicio.com/downloads_77791692/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://s3.gamevicio.com/downloads_977850182/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://static.gamevicio.com/downloads_213101809/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://dc761.4shared.com/download/.../Mafia_II_-_Traduo_PT-BR.exe

http://static.gamevicio.com/downloads_990986053/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

https://mega.nz/temporary/.../Nck3yByD

http://static.gamevicio.com/downloads_349934677/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://static.gamevicio.com/downloads_335595207/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://static.gamevicio.com/downloads_215200890/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://static.gamevicio.com/downloads_836370838/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

https://mega.nz/persistent/.../ANgGSBZL

https://mega.nz/temporary/.../ANgGSBZL

http://static.gamevicio.com/downloads_514772215/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

https://mega.nz/temporary/.../uMkBlbZI

http://static.gamevicio.com/downloads_592431327/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://static.gamevicio.com/downloads_623110764/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://vlr.tynt.com/?format=txt&key=284d869ffe43382ebe88a02cabb697ab&u=http://static.gamevicio.com/downloads_85294451/traducao/4/pc/mafia2_br[www.gamevicio.com.br].exe&subId=w!fvx5k5qnmy8q&txt=Clique aqui para começar o download&loc=http://www.gamevicio.com/i/traducao/417-mafia-ii-para-portugues-brasil/start/1/index.html&ref=http://www.gamevicio.com/i/traducao/417-mafia-ii-para-portugues-brasil/.../index.html&title=Iniciar download - Mirror 1 - Tradução de Mafia II para Computador (

http://down2.baixe.net/3/.../mafia2_br.exe

https://mega.nz/persistent/.../iNlUiJxY

https://mega.nz/temporary/.../iNlUiJxY

http://gv7.gamevicio.com/downloads_344987169/traducao/4/.../mafia2_br[www.gamevicio.com.br].exe

http://dc221.4shared.com/download/.../mafia2_brwwwgameviciocombr.exe

Remove mafia2_br[www.gamevicio.com.br].exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.