home

yandexpacksetup.exe

Windows Installer XML

Microsoft Corporation

Publisher:
Microsoft Corporation

Product:
Windows Installer XML

Description:
Software Installer

Version:
3.0.5419.0

MD5:
d5cff8742298a9dbb6d2f062715fca83

SHA-1:
bb1f5f68bf911924dbf78e23fa4240277d867d37

SHA-256:
322ed2ec65a5883f965777557fd8182d10641741daeafa1db3c68a41b493ca20

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/17/2024 4:07:10 PM UTC  (today)

File size:
3.2 MB (3,323,744 bytes)

Product version:
3.0.5419.0

Copyright:
Copyright (c) Microsoft Corporation.  All rights reserved.

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\yandexpacksetup.exe

File PE Metadata
Compilation timestamp:
3/4/2016 7:36:21 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:B1+lwRD79CNoRf7GuifTks8TlN96C9A+w7cJ7kkJkTe/R:BJ9NibksjZIj

Entry address:
0x13A7E

Entry point:
71, 0C, 15, AE, D5, 9D, 57, 01, DB, 1D, 86, 7D, 78, B5, 0F, AF, F2, FE, C8, 8D, 15, 49, C2, FE, 47, 8D, 3D, A5, AF, D7, AD, 89, C5, 88, DF, 01, C9, C7, C2, 9A, A3, 27, 6C, 1D, 10, 45, 4B, CD, 52, F7, C0, 38, 1B, 45, BB, 0F, BF, EA, 5E, 03, FD, 8D, 15, 03, 94, 19, 6F, 81, E5, 04, 7E, 7F, A1, 88, DD, 69, D0, 0E, D6, 5D, 60, 1D, 2E, FB, AA, A5, 0F, AF, FE, 0C, 03, 2D, 7F, 09, EA, 53, E8, 24, 00, 00, 00, 2C, 94, 29, C3, 8D, 35, 33, 9E, AF, 4B, 75, 02, 34, 73, 81, E9, CC, AC, 00, 00, 8B, EA, 89, CD, 69, F2, 5F...
 
[+]

Entropy:
6.8637

Code size:
166 KB (169,984 bytes)

The file yandexpacksetup.exe has been seen being distributed by the following URL.

http://cache-ams04.cdn.yandex.net/downloader.yandex.net/yandex-pack/.../YandexPackSetup.exe

Scan yandexpacksetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.