The Addition exe (All for GTAV Legacy 1 0 3586 Installation) RePack by Canek77 File Malware Analysis
Gridinsoft Logo
File Icon

The Addition.exe (All for GTAV Legacy 1.0.3586 Installation) File Analysis

Updated 3 days ago
Checked by Malware Check
Addition.exe

Technical Analysis

File Name Addition.exe
File Type
Win32 EXE
Magic Bytes PE32 executable (GUI) Intel 80386, for MS Windows
SSDEEP Hash
786432:DSt1yMQGlZ7jxapIHzklD4TYOWQHVXPAChI829fzGcMChX8gjV2jFxs4N5Zj/rCj:DSSMQGIIH6OLWGvl25K3gMgjIFxPNij
Scanner Version 1.0.224.174
Database Version 2025-09-06 20:00:37 UTC

Suspicious File Detected

Detected by 14 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
20%
Detection Rate
56,072,116
File Size (bytes)
14/70
Engines Detected
2025-09-06
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
94db04166ef43bc418ab6c28f2f6a5d8
SHA1
a85697e2733b43cc29a83659abbe97897101185e
SHA256
9b7a32c2dbe23e39642b4e1fb89d0f662341bc8fe12621cb1c141735bb77d011
SHA512
aa9a01c0fe9391e9b1bb18e375f6658ad0b77580c6348503b00c1a295a5b14f0a20fdf0ccae9945ff162b2f159dc40ecb291311e587dec4718d54490cdea21fd
ImpHash
c9adc83b45e363b21cd6b11b5da0501f

Security Engines with Detections (14 of 70)

Bkav
W32.AIDetectMalware Malicious
CAT-QuickHeal
Trojan.Ghanarava.1756511083f6a5d8 Malicious
Skyhigh
Artemis Malicious
Cylance
Unsafe Malicious
Sangfor
Trojan.Win32.Agent.Vt6g Malicious
ESET-NOD32
a variant of Win64/GameHack_AGen.AX potentially unsafe Malicious
Avast
FileRepMalware [Misc] Malicious
Sophos
Generic Reputation PUA (PUA) Malicious
Webroot
W32.Malware.gen Malicious
Microsoft
Trojan:Win32/Kepavll!rfn Malicious
Google
Detected Malicious
Fortinet
Riskware/Crack Malicious
AVG
FileRepMalware [Misc] Malicious
alibabacloud
HackTool:Win/Crack.DV Malicious
56 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Icon
Hash: fdb46880683edbe0df3928ef7001c863
Fuzzy: 34ac618d09790e3b0c69f332aadfab18
dHash: 70e8c9f4d2c0f438
Image Base 0x00400000
Entry Point 0x00425468
Compilation Time 1992-06-19 22:22:17
Checksum 0x0003f9f1 (Actual: 0x03588dc9)
OS Version 4.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
Digital Signature No valid SignedData structure was found.
Imports 10 libraries
kernel32, user32, advapi32, oleaut32, gdi32, winmm, ole32, comctl32, shell32, cabinet
Exports 0 functions
Resources 11 Resources
Sections 8 Sections

Version Information

Comments
CompanyName RePack by Canek77
FileDescription All for GTAV Legacy 1.0.3586 Installation
FileVersion 1.0.3586
LegalCopyright RePack by Canek77
Translation 0x0409 0x04e4

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
CODE 0x00001000 148,684 bytes 148,992 bytes 6.59 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 5E14E4EDE2E2215BC7D72837B9871F8F
DATA 0x00026000 10,388 bytes 10,752 bytes 3.79 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE ABAFCBFBD7F8AC0226CA496A92A0CF06
BSS 0x00029000 4,341 bytes 0 bytes 0.00 (Normal) IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D41D8CD98F00B204E9800998ECF8427E
.idata 0x0002b000 6,040 bytes 6,144 bytes 4.89 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE A4E0AC39D5ED487CEEA059FA23DFCE5E
.tls 0x0002d000 8 bytes 0 bytes 0.00 (Normal) IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D41D8CD98F00B204E9800998ECF8427E
.rdata 0x0002e000 24 bytes 512 bytes 0.20 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ C4FDD0C5C9EFB616FCC85D66056CA490
.reloc 0x0002f000 6,276 bytes 6,656 bytes 6.59 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ 867A1120317D51734587A74F6EE70016
.rsrc 0x00031000 25,256 bytes 25,600 bytes 5.25 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ A8E5A38171AD21E4F57508433ABB3CFC
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 11 (24,532 bytes)
Resource Type Count Total Size Percentage
RT_ICON 6 22,384 bytes
91.2%
RT_RCDATA 2 288 bytes
1.2%
RT_GROUP_ICON 1 90 bytes
0.4%
RT_VERSION 1 884 bytes
3.6%
RT_MANIFEST 1 886 bytes
3.6%

Certificate Chain Analysis

Certificate Information
Description All for GTAV Legacy 1.0.3586 Installation
File Version 1.0.3586
Copyright RePack by Canek77

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
14 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware