home

drempels15_setup.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from software-files-a.cnet.com and multiple other hosts.
MD5:
d0bbed9511aac649541add8795578403

SHA-1:
42d51701cf1945e14d7a214f9571d5f8a4a18b46

SHA-256:
d663478f4c5cf157653be3b815cb7a84f4bb729065dd47184833eabfa73bb271

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/23/2024 10:21:47 AM UTC  (today)

File size:
523.3 KB (535,860 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
3/28/2001 10:32:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:5D/PqjVhTXRUAv63GT8KPrvqiZrtO/qBzhGjNx:5rIhbA2T8KPriAVZQv

Entry address:
0x3F0F

Entry point:
55, 8B, EC, 81, EC, 64, 08, 00, 00, 53, 56, 57, BE, 00, 9A, 40, 00, FF, 35, CC, 84, 40, 00, 56, E8, D1, FE, FF, FF, 68, 94, 85, 40, 00, 56, E8, 0A, FF, FF, FF, 83, C4, 10, 33, DB, 53, FF, 15, 78, 70, 40, 00, 8D, 8D, 9C, F7, FF, FF, 68, 00, 04, 00, 00, 51, 50, A3, D8, 99, 40, 00, FF, 15, 90, 70, 40, 00, 8D, 85, 9C, F7, FF, FF, BE, 40, 9A, 40, 00, 50, 56, 8B, FE, E8, 8E, FE, FF, FF, 38, 1D, 40, 9A, 40, 00, 59, 59, 74, 11, 47, 38, 1F, 75, FB, 3B, FE, 76, 08, 80, 3F, 5C, 74, 03, 4F, EB, F4, 53, 53, 6A, 03, 53...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
21.5 KB (22,016 bytes)

The file drempels15_setup.exe has been seen being distributed by the following 2 URLs.

http://software-files-a.cnet.com/s/software/59/74/26/.../drempels15_setup.exe

http://www.geisswerks.com/.../drempels15_setup.exe

Scan drempels15_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.