Gridinsoft Logo

The LaunchGTAIV.exe (SecuROM Launcher) File Analysis

Updated 1 year ago
Checked by Malaware Check
LaunchGTAIV.exe

Technical Analysis

File Name LaunchGTAIV.exe
File Type
Win32 EXE
Magic Bytes PE32 executable (GUI) Intel 80386, for MS Windows
SSDEEP Hash
1536:swtQvAxiiWBYUyS7zwknLJ7i19GGlbYv75AV:sw+oAXLLVMRlSY
Scanner Version 1.0.172.174
Database Version 2024-04-20 19:00:35 UTC

Suspicious File Detected

Detected by 28 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
40%
Detection Rate
73,728
File Size (bytes)
28/70
Engines Detected
2024-04-20
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
3e9b3dc03cd5c2e658dd731b616fdcf1
SHA1
fe9249dc2e4f0dc6de3b17f99db18fb15de35294
SHA256
fb1764acec6f5587a3482a8a194bf7c6d2a646de6e8449bc1ea5e46b1d0bf649
SHA512
200c18c40d0f11139f74b9875edeb9b365807a85ff5c89ef113324b889317d30a13407f75736ae3f340ee4a83c7fb0619aea3b2d83d0867dc829118459e6ac0a
ImpHash
fe58afe4aa11460854c2c733e47fbeb7

Security Engines with Detections (28 of 70)

CAT-QuickHeal
Trojan.IGENERIC Malicious
Skyhigh
RDN/Generic PUP.z Malicious
ALYac
Trojan.Agent.75940U Malicious
Cylance
unsafe Malicious
Sangfor
Hacktool.Win32.Crack.Vshz Malicious
K7AntiVirus
Hacktool ( 0047f82e1 ) Malicious
K7GW
Hacktool ( 0047f82e1 ) Malicious
CrowdStrike
win/grayware_confidence_100% (W) Malicious
Elastic
malicious (high confidence) Malicious
ESET-NOD32
Win32/HackTool.Crack.BC potentially unsafe Malicious
APEX
Malicious Malicious
TrendMicro-HouseCall
PUA.Win32.GameHack.AVC Malicious
TrendMicro
PUA.Win32.GameHack.AVC Malicious
FireEye
Generic.mg.3e9b3dc03cd5c2e6 Malicious
Sophos
Troj/Sirefef-T Malicious
Jiangmin
Trojan.Generic.gscci Malicious
Google
Detected Malicious
Varist
W32/Backdoor.CJTH-9194 Malicious
Antiy-AVL
HackTool/Win32.Crack Malicious
Kingsoft
Win32.HackTool.Crack.BC Malicious
Xcitium
ApplicUnwnt@#2hlea9iw5si65 Malicious
McAfee
RDN/Generic PUP.z Malicious
VBA32
Trojan.Tiggre Malicious
Rising
[email protected] (RDMK:3Y530uHkE8j151bYG2C5jw) Malicious
Yandex
Trojan.Igent.bXn8s8.3 Malicious
Fortinet
Riskware/Crack Malicious
DeepInstinct
MALICIOUS Malicious
alibabacloud
HackTool:Win/Crack.BC Malicious
42 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Image Base 0x00400000
Entry Point 0x00408c06
Compilation Time 2008-09-10 16:19:45
Checksum 0x00013bc6 (Actual: 0x0001da44)
OS Version 4.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
Digital Signature The PE file does not contain a certificate table.
Imports 2 libraries
USER32, KERNEL32
Exports 0 functions
Resources 2 Resources
Sections 4 Sections

Version Information

CompanyName Sony DADC Austria AG
FileDescription SecuROM Launcher
FileVersion 0.1.0.0
ProductVersion 0.1.0.0
LegalCopyright (c) 2008 Sony DADC Austria AG
ProductName SecuROM Launcher
Translation 0x0409 0x04e4

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
Sitext 0x00001000 32,768 bytes 32,768 bytes 6.48 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 8C1D2258D3E5AD8A7D9E3FA9FF7675F4
.rdata 0x00009000 8,192 bytes 8,192 bytes 4.95 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ B549A6BDB7146A3CF073132650C559D0
.data 0x0000b000 24,576 bytes 24,576 bytes 3.93 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 129DB12049FF1B4C33D62BC567D61253
.securom 0x00011000 4,096 bytes 4,096 bytes 4.12 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 823E612785FD753290960430EACF22C0

Resource Analysis

Total Resources: 2 (1,133 bytes)
Resource Type Count Total Size Percentage
RT_VERSION 1 636 bytes
56.1%
RT_MANIFEST 1 497 bytes
43.9%

Certificate Chain Analysis

Certificate Information
Product SecuROM Launcher
Description SecuROM Launcher
File Version 0.1.0.0
Copyright (c) 2008 Sony DADC Austria AG

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

The PE file does not contain a certificate table.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
28 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware