home

sa_us_upd.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download1961.mediafire.com and multiple other hosts.
MD5:
8171b7f9ae96f1d5b9e45f06bcefaa7e

SHA-1:
c89fb1708bc19684ee64b3d9fdacaad924068471

SHA-256:
4c2f33995c783be9593f54bed513ba7cde3454973ecd9e7f2b043cda9aaac675

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 10:28:13 PM UTC  (today)

File size:
11.1 MB (11,641,103 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
12/3/2002 8:57:03 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.55

CTPH (ssdeep):
196608:AkVCmI70XUSXjtU6MgNe0M/TaeVVQNym4:AkVQdAJNXM/Taegym4

Entry address:
0x2ADF

Entry point:
64, A1, 00, 00, 00, 00, 55, 8B, EC, 6A, FF, 68, 00, 50, 40, 00, 68, 68, 37, 40, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 60, 53, 56, 57, 89, 65, E8, FF, 15, 04, 71, 40, 00, A3, 2C, 60, 40, 00, 8A, C4, 25, FF, 00, 00, 00, A3, 38, 60, 40, 00, A1, 2C, 60, 40, 00, C1, 2D, 2C, 60, 40, 00, 10, 25, FF, 00, 00, 00, A3, 34, 60, 40, 00, C1, E0, 08, 03, 05, 38, 60, 40, 00, A3, 30, 60, 40, 00, E8, 78, 0B, 00, 00, C7, 45, FC, 00, 00, 00, 00, E8, 7E, 0A, 00, 00, E8, 6E, 0A, 00, 00, FF, 15, D4, 70, 40, 00, A3, EC, 44...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v4.2

Code size:
12 KB (12,288 bytes)

The file sa_us_upd.exe has been discovered within the following program.

GTA San Andreas  by Rockstar Games Inc.
Grand Theft Auto: San Andreas is an open world action-adventure video game.
www.rockstargames.com
1% remove it
 
Powered by Should I Remove It?

The file sa_us_upd.exe has been seen being distributed by the following 8 URLs.

http://download1961.mediafire.com/rojrm9a2o6dg/.../Grand Theft Auto San Andreas Güncelleme v1.01.exe

http://download1961.mediafire.com/ps6d7kcuiymg/.../Grand Theft Auto San Andreas Güncelleme v1.01.exe

http://s7934.chomikuj.pl/File.aspx?e=Qh7jZH7XgqSJdHnMXh-1rraxADB-U4MI8XSQW0zKDKvj8VE7yPFi-6aHmRoXG6bcbw_FnxZXl_8dcY3oyE6Hmp1iy0h53gDoA1mTIOdaK2qjLopgnkn-afM8pd7i55UWIuR1OS8wkatZfqj7bi4L99ga916mhlBZVyIRuuwV74zY1Hl5mrjwyIbcjAFaWlaKKpy9QO45q3Zz2H5-MdwSSh98p33MJjcodaYs1gwSTYZbO-wjKj_e9_0k9-HKxvOKx9VE_ihlvYBUFGpa-FNwPOtU3_fx8HUCiV2NV1wBBOfe70WhvNd1Dwz5lLM4AkkndSLE55XsynP9gEXfBQDe0GKCTn-zV_Im0SMQSTaxn1iqGMeu-9DXhhvwGA8jYxgFHZLzyn6C7utKMvB4Stmpng&pv=2

https://mega.nz/temporary/.../WwYjjQob

http://cdn.repodepo6.com/gta-san-andreas-patch.exe

temp:SA_US_upd.exe

http://download2130.mediafire.com/5ua98sasm1ng/.../Grand Theft Auto San Andreas Güncelleme v1.01.exe

http://download630.mediafire.com/ohhrguncdqjg/.../Grand Theft Auto San Andreas Güncelleme v1.01.exe

Scan sa_us_upd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.