home

teamviewer_setup.exe

TeamViewer GmbH

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with multiple programs including TeamViewer 5 (MSI Wrapper) and TeamViewer 5. The file has been seen being downloaded from files.aponlinembnr.webnode.com.
Publisher:
TeamViewer GmbH  (signed and verified)

MD5:
bb59c612fe7105934593c7a3da8ed359

SHA-1:
b84dd065d71def4d90f8b4e6525335fe0e9289ae

SHA-256:
0c7c960a41859d9e7520c73bd0f537ae0b9add7198b22f2ba75e06a93fbfbc5b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/3/2024 11:55:32 PM UTC  (a few moments ago)

File size:
3 MB (3,169,384 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\downloads\teamviewer_setup.exe

Digital Signature
Signed by:
TeamViewer GmbH

Authority:
VeriSign, Inc.

Valid from:
1/3/2011 12:00:00 AM

Valid to:
2/21/2014 11:59:59 PM

Subject:
CN=TeamViewer GmbH, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=TeamViewer GmbH, S=Baden Wuerttemberg, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
396254FE773197199B0DD0C1FCD467CF

File PE Metadata
Compilation timestamp:
6/6/2009 10:41:48 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:gBcZRYuQyuFHnMrb6hBvdtbU/qcgTlaaMueOSRzstAEetwsqi5BYOX3L0Rr:gBcw7yoHyb6hFdhX3hMueO0FdBLI9

Entry address:
0x30CB

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 38, 3F, 42, 00, E8, F1, 2B, 00, 00, A3, 84, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 30, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 80, 36, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Entropy:
7.9874

Packer / compiler:
Nullsoft install system v2.x

Code size:
22.5 KB (23,040 bytes)

The file teamviewer_setup.exe has been discovered within the following programs.

TeamViewer 5  by TeamViewer GmbH
Publisher's description - “TeamViewer is a simple and fast solution for remote control, desktop sharing and file transfer that works behind any firewall and NAT proxy. To connect to another computer just run TeamViewer on both machines without the need of an installation procedure.”
www.teamviewer.com/en/download/windows.aspx
9% remove it
TeamViewer 5 (MSI Wrapper)  by TeamViewer GmbH
TeamViewer MSI is an alternative installation package for the full version or TeamViewer Host. It's used for deploying TeamViewer via Group Policy (GPO) in an Active Directory domain.
www.teamviewer.com
10% remove it
 
Powered by Should I Remove It?

The file teamviewer_setup.exe has been seen being distributed by the following URL.

http://files.aponlinembnr.webnode.com/.../TeamViewer_Setup.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.