» connect-setup.exe
Overview
Analysis
File Details

connect-setup.exe

Venux LLC

This is a self-extracting archive and installer.

File name:

connect-setup.exe

Publisher:

Venux LLC (signed and verified)

MD5:

ae246b98f2d3458345967d6182ef3b39

SHA-1:

e61d27f8dbf421408dcd978efadb4db68444a050

SHA-256:

cab60b4f0bba8d05a5857a9b7da59a93759751f977ddc5317749b5717d84d8b6

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/28/2024 10:55:38 AM UTC (today)

Scan engine

Detection

Engine version

Rising Antivirus

PE:Malware.XPACK-LNR/Heur!1.5594 [F]

23.00.65.16106

File size:

31.7 MB (33,208,312 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

Venux LLC

Authority:

GoDaddy.com, Inc.

Valid from:

10/12/2015 10:39:38 PM

Valid to:

10/12/2016 10:39:38 PM

Subject:

CN=Venux LLC, O=Venux LLC, L=Brooklyn, S=New York, C=US

Issuer:

CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

00D4CC6806EA9355F1

File PE Metadata

Compilation timestamp:

10/21/2015 7:53:49 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

786432:+u7frYsi2zWEoXgfRxJupYa9eZk9rPCqBlNTO1+VNIGjFemB2Tx5n7:3zYs9X7RxJupYa9gk9eOpR4m4Tx17

Entry address:

0x2E77780

Entry point:

60, BE, 00, 60, 32, 01, 8D, BE, 00, B0, 0D, FF, C7, 87, 28, DE, 0E, 01, 3F, 1A, 0B, 21, 57, 83, CD, FF, EB, 0E, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46... 
[+]

Entropy:

7.8340

Packer / compiler:

UPX v0.89.6 - v1.02 / v1.05 -v1.22 (Delphi) stub

Code size:

31.3 MB (32,841,728 bytes)

Scan connect-setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.