home

doctorpc_setup.exe

This is a self-extracting archive and installer.
MD5:
88424f8dd26f9d2d0cd8447ed6f91748

SHA-1:
20da6c3d468ad455b4cf8346d5551351510a96ac

SHA-256:
c3718e706e21f355992d9714a0f4493873e7f0abebd1bdac600bf3b0352a9075

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/19/2024 2:07:01 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
NSIS/TrojanDropper.Agent.CB
9.11246

McAfee
Artemis!E50423C905E2
5600.6841

File size:
83.3 KB (85,254 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\content.ie5\6uf9x98k\doctorpc_setup.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1536:Xef3Y4MtrEF8JriQXB2CgmqLAg+3DafYpB6Xrqio6hQv3cdJBG9FBunu:XGqtXiQgCgLQGUBS2gQPmJYFgu

Entry point:
1F, 8B, 08, 00, 00, 00, 00, 00, 00, 03, EC, BD, 0F, 7C, 54, C5, B9, 3F, 7C, 36, BB, 09, 4B, 48, D8, 05, 12, 0D, 12, 70, 81, 60, A9, 40, 08, 84, 28, 61, 09, 6C, 20, 1B, 82, 12, 5C, 58, B2, 8B, 9A, 00, 91, 6C, DC, 2C, 21, 89, C9, 39, 08, 36, 81, A4, 9B, B4, D9, 1C, D6, AA, 4D, 7B, E9, 2D, AD, 52, 68, 2F, 55, 7B, A5, AD, 22, 56, 8A, 09, D0, 04, 2C, 4A, F8, 23, 46, 41, 8D, 4A, 75, E2, 46, 8C, 80, 21, 40, E4, FC, BE, CF, 9C, 5D, 88, 56, EE, 7D, DF, 6B, 79, EF, 7B, EF, AF, F9, 7C, 66, CF, FC, 79, 66, E6, 79, 9E...
 
[+]

Entropy:
7.9969  (probably packed)

Scan doctorpc_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.