» setup.exe
Overview
Analysis
File Details
Programs (1)

setup.exe

Giveaway of the Day

Softdeluxe

The application setup.exe by Softdeluxe has been detected as a potentially unwanted program by 2 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. This file is typically installed with the program PowerArchiver 2012 by ConeXware, Inc..

File name:

setup.exe

Publisher:

giveawayoftheday.com (signed by Softdeluxe)

Product:

Giveaway of the Day

Version:

2.0.1.15

MD5:

0bdf758e42c7dc8df17a7ed89f70b972

SHA-1:

96e8cdeda7bfc391298e2a5a5769708994164875

SHA-256:

1ca644b3a3d427ffda0609b934dbf858bafbd8b1b2331a04b9c82601216f4a52

Scanner detections:

2 / 68

Status:

Potentially unwanted

Analysis date:

4/27/2024 3:53:55 AM UTC (today)

Scan engine

Detection

Engine version

Bkav FE

HW32.CDB

1.3.0.4246

Reason Heuristics

PUP.Softdelu.Installer (M)

16.3.2.22

File size:

3.1 MB (3,249,272 bytes)

Product version:

2.0.1.0

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\power archiver\setup.exe

Digital Signature

Signed by:

Softdeluxe

Authority:

Thawte, Inc.

Valid from:

8/11/2011 8:00:00 PM

Valid to:

8/11/2013 7:59:59 PM

Subject:

CN=Softdeluxe, O=Softdeluxe, L=Dubna, S=Moscow region, C=RU

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

03210A27BF81D359C5333208DDA8F10D

File PE Metadata

Compilation timestamp:

9/2/2012 9:37:48 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

98304:6MV4fOgspR2MW8x2iAvZh2n1u4X0hiZoh8:XV4pspgg7AvSBXaep

Entry address:

0x65C000

Entry point:

68, 00, 00, 00, 00, 68, 01, 00, 00, 00, 68, 00, 00, 40, 00, 68, 00, B0, A5, 00, E9, 00, 04, 00, 00, 04, 22, 00, 00, 00, 00, 00, 00, C6, 21, 00, 00, 00, 00, 00, 00, A2, 21, 00, 00, 00, 00, 00, 00, 48, 21, 00, 00, 5A, 21, 00, 00, 6E, 21, 00, 00, 00, 00, 00, 00, 88, 21, 00, 00, 00, 00, 00, 00, 26, 22, 00, 00, 00, 00, 00, 00, E2, 21, 00, 00, 00, 00, 00, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 00, 00, 00... 
[+]

Entropy:

7.8804

Packer / compiler:

PKLITE32 v1.1

Code size:

1.2 MB (1,255,936 bytes)

The file setup.exe has been discovered within the following program.

PowerArchiver 2012 by ConeXware, Inc.

Publisher's description - “PowerArchiver is an award-winning archive utility that provides support for most compressed and encoded files, as well as access to many powerful features and tools through an easy-to-use interface that seamlessly integrates with Windows Explorer.”

www.powerarchiver.com

About 3% of users remove it

Remove setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.