home

Hola-Setup.exe

Hola-Setup

Hola Networks Ltd.

The application Hola-Setup.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from cdn4.hola.org.
Publisher:
Hola Networks Ltd.

Product:
Hola-Setup

Description:
Hola Setup

Version:
1.0

MD5:
55f6e90cd242d55bea66d6fea3d666be

SHA-1:
391372231f59eed4a48edb019474c085a6d5b408

SHA-256:
d9086fd2ead8d8b8ecc072fb6682f42ececa87b2f04e5603267ee9470688cc05

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/23/2024 7:53:41 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Hola (L)
16.8.10.0

File size:
726.9 KB (744,320 bytes)

Product version:
1.0

Copyright:
Copyright (c) 2015 Hola Networks Ltd.

Original file name:
Hola-Setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\hola-setup.exe

File PE Metadata
Compilation timestamp:
11/18/2010 5:27:35 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:ys21lKazleoSte0AvJcfgC9IquMo8MHL6VEP6qlAIH0/Ux9alHqreV4UccZ:yseKacAxvHquMo3m6Cql1GHEeabcZ

Entry address:
0x30CD0

Entry point:
BF, B0, CF, 3C, 12, 87, C8, 51, 86, FF, 81, C9, 0B, 6E, C8, 5B, F7, C7, AE, 27, 6C, 41, 01, F2, F7, C1, 85, CA, 89, 8C, 0F, BE, F2, 18, F3, 56, F6, C5, D2, B5, 12, E8, 83, 00, 00, 00, 4B, 87, D3, 28, F5, 69, C1, 0C, FF, F4, 38, 24, 20, 88, CE, C7, C1, 9E, 60, 8B, 93, 3B, F1, B4, 59, 87, C0, 86, DF, F7, C3, 97, BC, 9B, C7, 80, FB, B5, 33, C9, 48, 8D, 2D, C1, A6, 5C, 96, 81, F1, 7C, 03, 00, 00, C7, C0, 88, 43, 2F, 28, 0F, AF, C1, 88, D0, 0F, B6, E9, 33, C2, 87, C7, 0C, CD, 81, E9, BF, F6, FF, FF, 40, F7, C6...
 
[+]

Entropy:
7.9922  (probably packed)

Code size:
64 KB (65,536 bytes)

The file Hola-Setup.exe has been seen being distributed by the following URL.

http://cdn4.hola.org/static/setup/.../Hola-Setup.exe

Remove Hola-Setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.