home

setup.exe

TOV

The application setup.exe by TOV has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
TOV   (signed and verified)

Version:
4.5.4.10

MD5:
506c3021660ba638ccfa35b230e6b028

SHA-1:
c51a73b912e734a10ae6285125150e6fdac2cc0b

SHA-256:
43c1464f25dc29e930a8a5734a50c1b8d45110158d4c6aa1e356a63d458a3400

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
5/15/2024 5:52:34 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Bundler.TOV (M)
17.3.15.0

File size:
2.5 MB (2,630,608 bytes)

Product version:
4.5.4.10

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\setup.exe

Digital Signature
Signed by:
TOV

Authority:
COMODO CA Limited

Valid from:
4/26/2016 3:00:00 AM

Valid to:
2/13/2017 2:59:59 AM

Subject:
CN="TOV ""RENT-IT""", OU=IT, O="TOV ""RENT-IT""", STREET="vul. Knyazhyy Zaton, 16-A", L=Kiev, S=Kiev, PostalCode=02095, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
19ACE3BFB198AF52FB7E58A91770EF4C

File PE Metadata
Compilation timestamp:
10/5/2010 3:03:16 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
12.0

Entry address:
0x1DC550

Entry point:
55, 8B, EC, 81, EC, 30, 0F, 00, 00, 8B, 85, 4C, FF, FF, FF, 89, 85, 68, F5, FF, FF, 8B, 8D, 68, F5, FF, FF, 83, E9, 07, 89, 8D, 68, F5, FF, FF, 81, BD, 68, F5, FF, FF, B7, 00, 00, 00, 77, 6E, 8B, 95, 68, F5, FF, FF, 0F, B6, 82, 90, EC, 5F, 00, FF, 24, 85, 74, EC, 5F, 00, 8A, 4D, 98, 88, 8D, 7F, FE, FF, FF, EB, 58, C7, 45, 90, DD, 52, 00, 00, EB, 4F, 0F, B7, 95, 10, FF, FF, FF, 8B, 45, B8, 8D, 8C, 10, 68, 56, 00, 00, 89, 4D, BC, EB, 39, 8B, 95, 70, FF, FF, FF, 83, EA, 39, 89, 95, 64, FF, FF, FF, EB, 28, 33...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.2 MB (2,307,584 bytes)

Remove setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.