condefsetup.exe

Content Defender

Artex Management S.A.

The application condefsetup.exe, “Content Defender Setup” by Artex Management S.A has been detected as a potentially unwanted program by 12 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program Content Defender by Artex Management S. A.. This file is typically installed with the program Content Defender by Artex Management S. A.. The file has been seen being downloaded from sendme13.ru.
Publisher:
"Artex Management S. A."  (signed by Artex Management S.A.)

Product:
Content Defender

Description:
Content Defender Setup

Version:
1.7.0.1

MD5:
4a3fc1f47fa613a3d9cc0954087b0fd8

SHA-1:
8dbde7a920355d431b466024168c8ad0c6350d2f

SHA-256:
40984ca337921397fbe3639713b09607f237a8f6cba90cf944ac0dae36d519b9

Scanner detections:
12 / 68

Status:
Potentially unwanted

Analysis date:
11/15/2024 9:53:57 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic
2016.0.2991

Dr.Web
Trojan.Zadved.185
9.0.1.0252

ESET NOD32
Win64/NetFilter.A potentially unsafe (variant)
9.12220

Fortinet FortiGate
Riskware/NetFilter.L
9/9/2015

Kaspersky
not-a-virus:RiskTool.Win64.NetFilter
14.0.0.1451

Malwarebytes
PUP.Optional.ContentDefender
v2015.09.09.05

Panda Antivirus
Generic Suspicious
15.09.09.05

Reason Heuristics
Threat.Win.Reputation.IMP
15.12.24.10

Rising Antivirus
PE:Packer.Win32.Crypt.ek!1615884[F1]
23.00.65.15907

Sophos
Generic PUA IN (PUA)
4.98

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
3.12.26.4

VIPRE Antivirus
NetFilter
43578

File size:
5.4 MB (5,611,104 bytes)

Product version:
1.7.0.1

Copyright:
Copyright (C) 2015

Original file name:
ConDefSe.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\content defender\condefsetup.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
8/13/2015 6:00:00 AM

Valid to:
12/31/2015 5:59:59 AM

Subject:
CN=Artex Management S.A., OU=dev, O=Artex Management S.A., STREET="50th Street , Global Plaza Tower, 19th Floor, Suite H", L=Panama City, S=Outside United States, PostalCode=0834, C=PA

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0085DAD9C9A9442461B37820CC56A5D533

File PE Metadata
Compilation timestamp:
9/7/2015 11:40:59 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
98304:4m13fQ+SIsUCUbufiYNsOcJ9fJckHzLsek49S/c1g3XNt0Zr:bZ2IFR0iasdbpn7k48/7O

Entry address:
0xC8C0

Entry point:
E8, F8, 4E, 00, 00, E9, 7F, FE, FF, FF, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 4A, F8, FF, FF, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 34, F8, FF, FF, CC, CC, CC, CC, 55, 8B, EC, 83, EC, 18, 53, 8B, 5D, 0C, 56, 57, C6, 45, FF, 00, 8B, 7B, 08, 8D, 73, 10, 33, 3D, 20, 44, 42, 00, C7, 45, F4, 01, 00, 00, 00, 8B, 07, 83, F8, FE, 74, 0D, 8B, 4F, 04, 03, CE, 33, 0C, 30, E8, B9, E9, FF, FF, 8B, 47, 08, 8B, 4F, 0C, 03, CE, 33...
 
[+]

Code size:
100 KB (102,400 bytes)

Program Uninstaller
Program name:
Content Defender

Display publisher:
Artex Management S. A.

Display version:
1.70

Uninstall string:
C:\Program Files\Content Defender\ConDefSetup.exe uninst=1


The file condefsetup.exe has been discovered within the following program.

Content Defender  by Artex Management S. A.
About 1% of users remove it
 
Powered by Should I Remove It?

The file condefsetup.exe has been seen being distributed by the following URL.

Remove condefsetup.exe - Powered by Reason Core Security