home

autodesk autocad 2013 32 _10924_i129791711_il345.exe

SIGMA Optimization Pro

AITI Strim CONSULTING, TOV

The application autodesk autocad 2013 32 _10924_i129791711_il345.exe, “Setup Launcher ” by AITI Strim CONSULTING, TOV has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The setup program bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install.
Publisher:
SIGMA   (signed by AITI Strim CONSULTING, TOV)

Product:
SIGMA Optimization Pro

Description:
Setup Launcher

Version:
1.2.0

MD5:
ea082a916c99d3acfffe165144bc584d

SHA-1:
9aa76c09d20f00dee537ab6f2044db3ce0089535

SHA-256:
f16a291654bfd619c0e682bb97d102dba4236aa037e70ad5c50a1f41f57f8048

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/29/2024 4:03:43 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Amonetize (M)
16.12.11.16

File size:
2.2 MB (2,338,936 bytes)

Product version:
1.2.0

Copyright:
Copyright (C) 2005 Macrovision Corporation

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
AITI Strim CONSULTING, TOV

Authority:
COMODO CA Limited

Valid from:
1/10/2016 6:00:00 PM

Valid to:
1/10/2017 5:59:59 PM

Subject:
CN="AITI Strim CONSULTING, TOV", OU=IT, O="AITI Strim CONSULTING, TOV", STREET="Bud. 53-55, vul.Pochainynska", L=Kyyiv, S=Kyyiv, PostalCode=04080, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
5A7A1CB365BD8EA3567456D3B8166630

File PE Metadata
Compilation timestamp:
1/25/2016 7:22:51 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x310E82

Entry point:
68, FB, 3E, F8, C1, E8, 22, 0F, FB, FF, BB, 82, AF, EB, 66, 0E, B0, EA, 19, BA, 89, A7, EF, 5C, 06, A6, E6, 63, 49, 12, EB, 41, 31, 17, 93, B2, FB, 4C, 48, 2A, 0B, 83, AF, 05, 81, 07, DE, 08, EB, 73, 76, 50, 68, 9B, D5, 21, 87, B0, 04, 87, 58, D9, 45, BA, 91, 5B, 76, 1F, 70, C8, E7, 66, F0, 66, 58, A0, 77, 08, B0, 9D, 1D, C8, B1, 15, 54, E0, 0F, 83, A1, 80, A1, 15, 76, 12, 78, 1B, 66, F6, 12, 18, 58, BC, C7, 96, C9, E1, 74, F4, D9, 2F, A2, 0B, 76, DA, 74, 19, 0E, EB, 38, 68, 66, AE, A2, A0, C4, BF, 84, 8D...
 
[+]

Entropy:
7.9859  (probably packed)

Code size:
2.2 MB (2,322,944 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.