» setup.exe
Overview
Analysis
File Details

setup.exe

The application setup.exe has been detected as a potentially unwanted program by 4 anti-malware scanners. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent.

File name:

setup.exe

MD5:

3c82b14ac52437f047dc43c1098c02f6

SHA-1:

2057dbbc55364fe5a2e15c4f7f4190240a7c97a6

SHA-256:

9c89a89cf7817e42f874ba6dd8fcb72246b9868d0ef5c2bfe35b16aa5cf59916

Scanner detections:

4 / 68

Status:

Potentially unwanted

Analysis date:

5/10/2024 3:49:13 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Application.Bundler.59

5813571

Emsisoft Anti-Malware

Gen:Variant.Application.Bundler.59

10.0.0.5366

ESET NOD32

Win32/DealPly.CA potentially unwanted application

7.0.302.0

Norman

Gen:Variant.Application.Bundler.59

11.01.2016 17:30:26

File size:

391.5 KB (400,896 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\setup.exe

File PE Metadata

Compilation timestamp:

6/20/1992 3:52:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

6144:eU5MWtrf7eOxodp5En9yNr/HDre53XqzlDhw:eMdOEEr/HDre53Xqxm

Entry address:

0x3660C

Entry point:

55, 8B, EC, 83, C4, F4, E8, 39, CB, FC, FF, E8, 54, DE, FC, FF, E8, 53, 08, FD, FF, E8, 4A, 71, FD, FF, E8, 29, 72, FD, FF, E8, 80, 91, FD, FF, E8, B7, F7, FD, FF, E8, DA, 91, FE, FF, E8, 59, B3, FE, FF, A1, 28, 86, 43, 00, E8, 33, 88, FE, FF, B9, 64, 86, 43, 00, BA, DC, 19, 42, 00, A1, 28, 86, 43, 00, E8, 2F, 88, FE, FF, A1, 28, 86, 43, 00, E8, B5, 88, FE, FF, E8, 48, D9, FC, FF, 8B, E5, 5D, C3, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

5.2505

Developed / compiled with:

Microsoft Visual C++

Code size:

214 KB (219,136 bytes)

Remove setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.