home

ms-install.exe

Direct Video Downloader

Major Share

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from www.majorshare.com and multiple other hosts.
Publisher:
Major Share

Product:
Direct Video Downloader

Description:
Direct Video Downloader Setup

MD5:
aa30ccf5d5491cac1ef58cc891d5da0a

SHA-1:
50149a4d2202ae8a7d24af32f14b8907e9ba52db

SHA-256:
98d4a9f38746b91891951e822e3cdc2c43d469b2ff27681be56687d360a75d0d

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/24/2024 7:09:01 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Somoto
8.9471

McAfee
Artemis!AA30CCF5D549
5600.7152

File size:
1.2 MB (1,302,141 bytes)

Product version:
1.7

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\ms-install.exe

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:CQizi8Dd/00HLVhELkDjoUwRwb0rDQkVKuZgEWJ0Y4AsItq:C9ek/0gKLkDjoUwR3QkNZLBY4Asqq

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Entropy:
7.9874

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

The file ms-install.exe has been discovered within the following program.

Direct Video Downloader version 1.1  by Major Share (MajorShare.com)
www.majorshare.com
64% remove it
 
Powered by Should I Remove It?

The file ms-install.exe has been seen being distributed by the following 8 URLs.

http://www.majorshare.com/download/.../

http://www.majorshare.com/download/.../

http://www.majorshare.com/download/.../

http://www.majorshare.com/download/.../

http://download.majorshare.com/.../setup-direct-youtube-downloader.exe

http://software-files-a.cnet.com/s/software/13/58/22/.../setup-dvd.exe

http://download.majorshare.com/.../setup-dvd.exe

http://www.majorshare.com/download/.../

Scan ms-install.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.