home

setup_somoto_fst_my_2.exe

fst_my_2

TUTO4PC COM INTERNATIONAL SL

This is the Eorezo installer which may include software offers for unwanted programs including toolbars. The application setup_somoto_fst_my_2.exe, “fst_my_2 Setup ” by TUTO4PC COM INTERNATIONAL SL has been detected as adware by 24 anti-malware scanners. The program is a setup application that uses the Inno Setup installer. This browser extension displays targeted advertising by monitoring the URLs viewed in the web browser. It is also typically executed from the user's temporary directory.
Publisher:
FREESOFTTODAY   (signed by TUTO4PC COM INTERNATIONAL SL)

Product:
fst_my_2

Description:
fst_my_2 Setup

MD5:
562ed2bed36406f73e725d752f8b48fa

SHA-1:
6198470b7bd165bae429d17d7d186b8e0bc87fc8

SHA-256:
30d7e960c9bafb0a4e0e94158829f9f22f175597cc72f270f98affc542b5d98a

Scanner detections:
24 / 68

Status:
Adware

Analysis date:
4/18/2024 12:40:40 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.Eorezo.AX
675

AhnLab V3 Security
Win-PUP/EoRezo
2014.10.28

Avira AntiVirus
ADWARE/EoRezo.Gen
7.11.181.200

avast!
Win32:Eorezo-BV [PUP]
2014.9-150331

AVG
Generic5
2016.0.3153

Bitdefender
Adware.Eorezo.AX
1.0.20.450

Dr.Web
Adware.Downware.1597
9.0.1.090

Emsisoft Anti-Malware
Adware.Eorezo.AX
8.15.03.31.10

ESET NOD32
Win32/AdWare.EoRezo.AU (variant)
9.10629

Fortinet FortiGate
Riskware/EoRezo
3/31/2015

F-Secure
Adware.Eorezo.AX
11.2015-31-03_3

G Data
Adware.Eorezo.AX
15.3.24

K7 AntiVirus
Adware
13.185.13813

Kaspersky
not-a-virus:AdWare.NSIS.Agent
14.0.0.2260

Malwarebytes
Adware.EoRezo
v2015.03.31.10

McAfee
Adware-Eorezo
5600.6809

Microsoft Security Essentials
Adware:Win32/EoRezo
1.11104

MicroWorld eScan
Adware.Eorezo.AX
16.0.0.270

NANO AntiVirus
Riskware.Win32.EoRezo.cusolv
0.28.2.62841

nProtect
Adware.Eorezo.AX
14.10.27.01

Reason Heuristics
PUP.Installer.Eorezo
15.3.31.22

Sophos
Eorezo
4.98

Vba32 AntiVirus
AdWare.Agent
3.12.26.3

VIPRE Antivirus
Tuto4PC
34296

File size:
3.1 MB (3,262,648 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\setup_somoto_fst_my_2.exe

Digital Signature
Signed by:
TUTO4PC COM INTERNATIONAL SL

Authority:
GlobalSign nv-sa

Valid from:
6/26/2013 8:19:10 PM

Valid to:
6/27/2014 8:19:10 PM

Subject:
E=contact@tutoriales100.com, CN=TUTO4PC COM INTERNATIONAL SL, O=TUTO4PC COM INTERNATIONAL SL, L=BARCELONA, S=CATALUNYA, C=ES

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121E6FBF47B55F81EDBA70D3D2CA03E568F

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:O9bK0GXUVn9jWI+LMiRDIeTmPPzRYLuFWQqCltz56NHC9m+osXk2WTfQlwNPcxp7:oQG9SI+LTULzRYL0W2lD694hrvYtNPg5

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Entropy:
7.9974

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

Remove setup_somoto_fst_my_2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.