fdminst.exe

Free Download Manager

FreeDownloadManager.ORG

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from global-shared-files-l3.softonic.com and multiple other hosts.
Publisher:
FreeDownloadManager.ORG

Product:
Free Download Manager

Description:
Free Download Manager Setup

MD5:
406076efbe44010824573cc640960312

SHA-1:
289e4a0435b998a96fce14d9bc583f94313d27b0

SHA-256:
b92c93d01b1ceb1290d302ddccec81f8821fb4c6c268bbdadaf2a3c5e1121bf9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 12:57:48 PM UTC  (today)

File size:
7.5 MB (7,837,272 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\fdminst.exe

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:NsOHwOvFci8x4DdoOj2aaS2DY+771wqiIHycG1XS:oEFt8x4hoRX1w9IHycGU

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, 24, CE, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 24, CE...
 
[+]

Entropy:
7.9995

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file fdminst.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file fdminst.exe has been seen being distributed by the following 5 URLs.

http://global-shared-files-l3.softonic.com/289/e4a/.../file?nvb=20140726203920&nva=20140727084020&token=0039b4d03448be733cd35&id_file=34870&channel=WEB_SD&instance=softonic_es&type=PROGRAM&fdh=no&SD_used=1&filename=fdminst_3_9_4_1472.exe

Scan fdminst.exe - Powered by Reason Core Security