» setup.exe
Overview
Analysis
File Details

setup.exe

The application setup.exe has been detected as a potentially unwanted program by 8 anti-malware scanners.

File name:

setup.exe

MD5:

1e2a191bd79024b2aafca3ebef09255c

SHA-1:

3bbc4617065f92b14c5895d3ae5b9d50190ec6a8

SHA-256:

8f4d31fdd04dc542bff783b199c75853be70e245611b0424362b43556392d5e5

Scanner detections:

8 / 68

Status:

Potentially unwanted

Analysis date:

4/25/2024 11:25:44 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Avira AntiVirus

ADWARE/DealPly.A.40063

8.3.2.2

AVG

DealApp

2016.0.2909

ESET NOD32

Win32/DealPly.BX potentially unwanted (variant)

9.12529

Fortinet FortiGate

Riskware/DealPly

12/1/2015

K7 AntiVirus

Adware

13.212.17782

Kaspersky

not-a-virus:HEUR:AdWare.Win32.DealPly

15.0.0.543

Qihoo 360 Security

HEUR/QVM05.1.Malware.Gen

1.0.0.1077

VIPRE Antivirus

Trojan.Win32.Generic

45062

File size:

523 KB (535,552 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\setup.exe

File PE Metadata

Compilation timestamp:

6/19/1992 3:22:17 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

12288:/6UV+6cOctIVZjVqmiQyate/rmnpaad4MxkTp3C8C:/57TrJnieE/reaaqMxkM8C

Entry address:

0x70B14

Entry point:

55, 8B, EC, 83, C4, E4, 33, C0, 89, 45, E4, 89, 45, E8, 89, 45, EC, B8, 74, 09, 47, 00, E8, A9, 5D, F9, FF, 33, C0, 55, 68, 5C, 0C, 47, 00, 64, FF, 30, 64, 89, 20, E8, AA, 1E, F9, FF, 85, C0, 0F, 85, C4, 00, 00, 00, 8D, 4D, EC, BA, 04, 00, 00, 00, B0, 6B, E8, 97, 3F, F9, FF, 8B, 45, EC, BA, 70, 0C, 47, 00, E8, E6, 3C, F9, FF, 0F, 84, A2, 00, 00, 00, DB, 2D, 74, 0C, 47, 00, E8, 29, 1F, F9, FF, D8, 1D, 80, 0C, 47, 00, DF, E0, 9E, 0F, 84, 88, 00, 00, 00, 6A, 00, 68, 1B, 03, 00, 00, E8, 8E, 57, F9, FF, 83, C4... 
[+]

Entropy:

6.4928

Developed / compiled with:

Microsoft Visual C++

Code size:

447.5 KB (458,240 bytes)

Remove setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.