» Setup.exe
Overview
Analysis
File Details

Setup.exe

The file Setup.exe has been detected as a potentially unwanted program by 54 anti-malware scanners. This downloadble file is typically blocked through Google's Safe Browsing technology in Chrome web browser.

File name:

Setup.exe

MD5:

a02134d4bcf4e6ee2dc4b40ec3fe762a

SHA-1:

8bab4dd5927b9c6c9084f17f735f80d1edffbf75

SHA-256:

82bbd7761d84877f3914233076bf75ea339517d053d92734a56211f63b49649d

Scanner detections:

54 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 10:25:55 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Agent.OIL

832

AegisLab AV Signature

AdWare.W32.Agent

2.1.4+

Agnitum Outpost

PUA.Agent

7.1.1

AhnLab V3 Security

PUP/Win32.DomaIQ

2014.09.13

Avira AntiVirus

TR/Trash.Gen

7.11.30.172

avast!

Win32:SoftPulse-Z [PUP]

141025-0

AVG

Found Win32/DH{gRJ UIEHeVRPFVGBFYEJHFOBE0GBDw}

2015.0.3310

Baidu Antivirus

PUA.Win32.SoftPulse

4.0.3.141025

Bitdefender

Adware.Agent.OIL

1.0.20.1490

Comodo Security

Application.Win32.SoftPulse.J

19496

Dr.Web

Trojan.DownLoader11.32266

9.0.1.05190

Emsisoft Anti-Malware

Adware.Agent.OIL

8.14.10.25.08

ESET NOD32

Win32/SoftPulse.J potentially unwanted application

7.0.302.0

Fortinet FortiGate

W32/AntiAV.AVST!tr

10/25/2014

F-Prot

W32/A-022719ea

v6.4.7.1.166

F-Secure

Adware.Agent.OIL

11.2014-25-10_7

G Data

Adware.Agent.OIL

14.10.24

IKARUS anti.virus

not-a-virus:AdWare.Agent

t3scan.1.7.8.0

K7 AntiVirus

Unwanted-Program

13.183.13358

Kaspersky

Packed.Win32.Krap

14.0.0.3046

Malwarebytes

PUP.Optional.DomaIQ

v2014.10.25.08

McAfee

Socrydo

5600.6966

MicroWorld eScan

Adware.Agent.OIL

15.0.0.894

NANO AntiVirus

Riskware.Win32.Agent.deikti

0.28.2.61942

Norman

Malware

11.20141025

nProtect

Adware.Agent.OIL

14.09.12.01

Panda Antivirus

Trj/Genetic.gen

14.10.25.08

Reason Heuristics

Threat.Win.Reputation.IMP

14.10.25.20

Sophos

SoftPulse

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Nullo[Short]

10277

Vba32 AntiVirus

AdWare.Agent

3.12.26.3

VIPRE Antivirus

Threat.4783235

32938

Zillya! Antivirus

Adware.Agent.Win32.11842

2.0.0.1920

File size:

423.7 KB (433,846 bytes)

Common path:

C:\users\{user}\downloads\setup.exe

File PE Metadata

Compilation timestamp:

8/21/2014 2:25:34 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

12288:xD3g1pennnnnCsBwGOHBvblq0ib9efT5AB+K18:DBwFBzFAB+i8

Entry address:

0x4DF6

Entry point:

E8, 29, 26, 00, 00, E9, 7F, FE, FF, FF, 57, 56, 8B, 74, 24, 10, 8B, 4C, 24, 14, 8B, 7C, 24, 0C, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, 68, 03, 00, 00, 0F, BA, 25, 14, 96, 41, 00, 01, 73, 07, F3, A4, E9, 17, 03, 00, 00, 81, F9, 80, 00, 00, 00, 0F, 82, CE, 01, 00, 00, 8B, C7, 33, C6, A9, 0F, 00, 00, 00, 75, 0E, 0F, BA, 25, A8, 80, 41, 00, 01, 0F, 82, DA, 04, 00, 00, 0F, BA, 25, 14, 96, 41, 00, 00, 0F, 83, A7, 01, 00, 00, F7, C7, 03, 00, 00, 00, 0F, 85, B8, 01, 00, 00, F7, C6, 03, 00, 00, 00... 
[+]

Entropy:

7.4085

Code size:

60 KB (61,440 bytes)

Remove Setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.