» operasetup.exe
Overview
Analysis
File Details
Downloads (1)

operasetup.exe

Opera Installer

Opera Software AS

This is a self-extracting archive and installer. The file has been seen being downloaded from net.geo.opera.com.

File name:

operasetup.exe

Publisher:

Opera Software (signed by Opera Software AS)

Product:

Opera Installer

Version:

43.0.2442.1144

MD5:

383b091c4cb917b8d866889869f6f139

SHA-1:

692fc7ffc925c17072018d5a3f2315634de98755

SHA-256:

e7b0e44a6f692eccf188c17f1a7f34f19ea8b594c2ff50053b7e7110d22df397

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/25/2024 10:35:02 AM UTC (today)

File size:

1.1 MB (1,192,824 bytes)

Product version:

43.0.2442.1144

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\operasetup.exe

Digital Signature

Signed by:

Opera Software AS

Authority:

DigiCert Inc

Valid from:

6/22/2016 5:00:00 PM

Valid to:

6/27/2019 5:00:00 AM

Subject:

CN=Opera Software AS, O=Opera Software AS, L=Oslo, S=Oslo, C=NO, PostalCode=NO-0484, STREET=Gjerdrums vei 19, SERIALNUMBER=916 368 127, OID.1.3.6.1.4.1.311.60.2.1.3=NO, OID.2.5.4.15=Private Organization

Issuer:

CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

0FDE84F0D55D8D3368325DC0CDC4A979

File PE Metadata

Compilation timestamp:

2/25/2017 10:20:32 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

14.0

Entry address:

0x210410

Entry point:

60, BE, 00, C0, 4F, 00, 8D, BE, 00, 50, F0, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75... 
[+]

Entropy:

7.7688

Packer / compiler:

UPX 2.90LZMA

Code size:

1.1 MB (1,134,592 bytes)

The file operasetup.exe has been seen being distributed by the following URL.

http://net.geo.opera.com/opera/stable/windows?http_referrer=https://ph.search.yahoo.com/.../search_hspart_itm_hsimp_yhs-001_type_wbf_btlrd_17_08_p_download app store computer_param1_1_param2_f=4&ip=112.198.101.168&cat=web&xlp_pers_guid=&xlp_sess_guid=e36cc031-2227-4cdd-bb5c-81fb4d8ffbe9&uref=&abid=&xt_abg=&b=Chrome&cc=ph&pa=wincy&cd=2XzuyEtN2Y1L1QzutA0CtDyByBtCyBtA0EtD0EtAzzyCyEtDtN0D0Tzu0StCzzzztAtN1L2XzutAtFtByBtFtCtDtCtFyDyDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StDyEyEtAyE0AtAtDtGtB0CyBtBtG0CyBtAtAtGyC0B0AyBtGtCzzzz0FtD0ByBtC0F0C0DtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Fzy0BzytDtAyByDtGzytAyB0EtGyEyE0D0CtG0ByC0B0DtG0AyD0AyCyBtD0DyEyDtAtA0E2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtBtCyEzy&cr=2143136941&a=wbf_btlrd_17_08&os_ver=6.2&os=Windows 8 Single Language&xt_ver=10.1.0.60&utm_source=bing_via_opera_com&utm_medium=cpc&utm_campaign=WW - Search -EN_via_opera_com&utm_content=_TextAds_English_Global_Keywords&utm_term=downloads

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.