home

setup.exe

This is a setup and installation application. The file has been seen being downloaded from www.url-removed.com.
MD5:
2bbaef79483689ec7d87f31602ffe192

SHA-1:
57578daef054895e22459215c4dc9ff808fa425e

SHA-256:
755a1dad5bc21a8bc7a4d3d3868c015f9ae47eeac09b6a19f3312b9cf4194044

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/18/2024 2:37:38 PM UTC  (today)

File size:
2.9 KB (2,999 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\setup.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
48:YZ8o7fV8McjGCHgVSUa/naZ0hEzC78Nh7SdWiz/uBBBpbBNjmBCAW9plsu3j:Hy7i9Hvr/n00j78Nh7SdWiz/gBBpV+oN

Entry point:
0A, 3C, 21, 64, 6F, 63, 74, 79, 70, 65, 20, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 65, 61, 64, 3E, 3C, 73, 63, 72, 69, 70, 74, 20, 73, 72, 63, 3D, 22, 2F, 2F, 73, 2E, 77, 65, 62, 73, 68, 69, 65, 6C, 64, 6F, 6E, 6C, 69, 6E, 65, 2E, 63, 6F, 6D, 2F, 6C, 2F, 6C, 6F, 61, 64, 2F, 3F, 75, 3D, 63, 37, 30, 61, 38, 32, 32, 33, 32, 63, 35, 62, 34, 30, 34, 38, 38, 35, 38, 38, 34, 34, 66, 30, 63, 39, 63, 31, 62, 66, 63, 62, 26, 6E, 3D, 57, 45, 42, 53, 26, 76, 3D, 32, 2E, 37, 2E, 37, 38, 32, 33, 32...
 
[+]

The file setup.exe has been seen being distributed by the following URL.

http://www.url-removed.com/

Scan setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.