» amigosetup.exe
Overview
Analysis
File Details

amigosetup.exe

The application amigosetup.exe has been detected as a potentially unwanted program by 17 anti-malware scanners. This is a self-extracting archive and installer, however the file is not signed with an authenticode signature from a trusted source.

File name:

amigosetup.exe

MD5:

226a88ef2724b973eef6592f85cb3c64

SHA-1:

2460c8523bc99b648aa790baddb82d58f0a70b27

Scanner detections:

17 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 7:17:53 PM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

TR/Graftor.85504.7

8.3.2.2

Arcabit

Trojan.Graftor.D3E802

1.0.0.597

avast!

Win32:Dropper-gen [Drp]

2014.9-151201

AVG

Generic14_c

2016.0.2909

Baidu Antivirus

Adware.Win32.OxyPumper

4.0.3.15121

Bitdefender

Gen:Variant.Graftor.256002

1.0.20.1675

Emsisoft Anti-Malware

Gen:Variant.Graftor.256002

8.15.12.01.07

ESET NOD32

Win32/Adware.OxyPumper (variant)

9.12584

F-Secure

Gen:Variant.Graftor.256002

11.2015-01-12_3

G Data

Gen:Variant.Graftor.256002

15.12.25

K7 AntiVirus

Adware

13.212.17888

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.1039

McAfee

Artemis!226A88EF2724

5600.6565

MicroWorld eScan

Gen:Variant.Graftor.256002

16.0.0.1005

Qihoo 360 Security

Win32/Trojan.Multi.daf

1.0.0.1077

Trend Micro

TROJ_GEN.R047C0OKF15

10.465.01

VIPRE Antivirus

Trojan.Win32.Generic

45272

File size:

83.5 KB (85,504 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Documents and Settings\{user}\Local settings\temp\amigosetup.exe

File PE Metadata

Compilation timestamp:

11/9/2015 9:04:42 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

1536:0tp9nFm5JebFT2OlIzTKksnEc4xqbYgg33eaqKR:0tLnFm5kFxlkTSnEccqbYF33epKR

Entry address:

0x51B8

Entry point:

E8, 62, 2B, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 5D, E9, B4, 04, 00, 00, 3B, 0D, D0, 40, 41, 00, 75, 02, F3, C3, E9, DE, 2B, 00, 00, 8B, FF, 55, 8B, EC, 8B, C1, 8B, 4D, 08, C7, 00, 38, F2, 40, 00, 8B, 09, 89, 48, 04, C6, 40, 08, 00, 5D, C2, 08, 00, 8B, 41, 04, 85, C0, 75, 05, B8, 40, F2, 40, 00, C3, 8B, FF, 55, 8B, EC, 83, 7D, 08, 00, 57, 8B, F9, 74, 2D, 56, FF, 75, 08, E8, 03, 2D, 00, 00, 8D, 70, 01, 56, E8, 95, 04, 00, 00, 59, 59, 89, 47, 04, 85, C0, 74, 11, FF, 75, 08, 56, 50, E8, 87, 2C, 00... 
[+]

Code size:

55 KB (56,320 bytes)

Remove amigosetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.