home

etxcapital4setup.exe

Setup

MetaQuotes Software Corp.

This is a self-extracting archive and installer. The file has been seen being downloaded from cdn.monecor.com.
Publisher:
MetaQuotes Software Corp.

Product:
Setup

Version:
5.0.0.933

MD5:
3f8ccc1cbdc63151d730804951fff743

SHA-1:
966382daf854fcb6a005a2b28d08416ddd0344e6

SHA-256:
0974d4e070d18fbf4142231043dc823043ff5ea509a9c0280319ae2aa0c8debf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/5/2024 10:59:09 PM UTC  (today)

File size:
810 KB (829,480 bytes)

Product version:
5.0.0.933

Copyright:
© 2001-2014, MetaQuotes Software Corp.

Trademarks:
MetaTrader

Original file name:
Setup

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\etxcapital4setup.exe

File PE Metadata
Compilation timestamp:
4/28/2014 11:38:19 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
12288:HlJpyoFydCXO3fEL4PhnX+bwCtkQbuzxx665HfgBUEaj7GfFqdWvFNF01DwQV/x3:AyAlPEL4pXELizmu/gG5jeI2XE/x3

Entry address:
0x126A20

Entry point:
60, 80, D1, 5E, 0F, B6, CE, 68, EE, 35, B1, 00, 68, 6C, 65, FE, 00, 0F, B7, EF, 86, F9, 87, F6, F6, C6, 7F, 12, C7, FE, CB, 8A, FF, F3, 87, F7, F3, 0F, AF, FA, BB, 9D, 6E, 00, 00, 8D, 3D, 55, EF, 7E, 98, 81, F3, C0, 07, 00, 00, 80, D4, C4, F6, C6, 5E, 0F, AF, C6, 0F, B7, F8, 80, E8, 8A, 89, F8, 8D, 05, E7, 28, 72, A8, 39, C8, C7, C0, 74, 03, 53, A7, B8, 00, 00, 00, 00, 03, C3, 83, E7, 00, 8D, 38, 86, E0, 48, 57, 81, E8, B7, 71, 64, 73, 69, C0, 42, 9F, 9E, 1D, 5E, 40, FE, C0, 8D, 05, 08, B2, BA, A8, 47, 56...
 
[+]

Entropy:
7.7408  (probably packed)

Code size:
216 KB (221,184 bytes)

The file etxcapital4setup.exe has been seen being distributed by the following URL.

https://cdn.monecor.com/.../etxcapital4setup.exe

Scan etxcapital4setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.