home

irsetup.exe

Setup Factory Runtime

Totalidea Software GmbH

The program is a setup application that uses the Setup Factory installer.
Publisher:
Indigo Rose Corporation  (signed by Totalidea Software GmbH)

Product:
Setup Factory Runtime

Description:
Setup Application

Version:
9.5.0.0

MD5:
51a3ce2136965672c83be255ee5dd41a

SHA-1:
32f462833862eee5b33ede49f5779f7556a13aa1

SHA-256:
ef5ea939cd4badbab609ebd0e13a60d30bf1b9c203502bed17aabc74482fed88

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/4/2024 6:39:23 PM UTC  (today)

File size:
4.9 MB (5,175,576 bytes)

Product version:
9.5.0.0

Copyright:
Runtime Engine Copyright © 2015 Indigo Rose Corporation (www.indigorose.com)

Trademarks:
Setup Factory is a trademark of Indigo Rose Corporation

Original file name:
suf_rt.exe

File type:
Executable application (Win64 EXE)

Installer:
Setup Factory

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\irsetup.exe

Digital Signature
Signed by:
Totalidea Software GmbH

Authority:
COMODO CA Limited

Valid from:
1/25/2016 1:00:00 AM

Valid to:
6/2/2016 1:59:59 AM

Subject:
CN=Totalidea Software GmbH, O=Totalidea Software GmbH, STREET=Julius-Pluecker-Straße 5, L=Remscheid, S=NRW, PostalCode=42897, C=DE

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1425AED3FED627602567F1CC556B4DDA

File PE Metadata
Compilation timestamp:
2/9/2015 10:16:12 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
98304:N753hACFdOGhGR5d0xv7/Fl9BSFYi7OsM:N75xACFdOGw+77uTM

Entry address:
0x25C07C

Entry point:
48, 83, EC, 28, E8, BF, F2, 00, 00, 48, 83, C4, 28, E9, 52, FE, FF, FF, CC, CC, 48, 8B, C1, 0F, B7, 10, 48, 83, C0, 02, 66, 85, D2, 75, F4, 48, 2B, C1, 48, D1, F8, 48, FF, C8, C3, CC, CC, CC, 40, 57, 48, 83, EC, 20, 4D, 8B, D0, 45, 33, C0, 4D, 85, C9, 75, 04, 33, C0, EB, 5F, 48, 85, C9, 75, 15, E8, 6D, B4, FF, FF, BF, 16, 00, 00, 00, 89, 38, E8, 65, 36, 00, 00, 8B, C7, EB, 45, 4D, 85, D2, 74, 13, 49, 3B, D1, 72, 0E, 4F, 8D, 04, 09, 49, 8B, D2, E8, EF, 7D, FF, FF, EB, CA, 48, 85, D2, 74, 0D, 48, 8B, F9, 41...
 
[+]

Entropy:
6.2685

Code size:
3.4 MB (3,522,560 bytes)

Scan irsetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.