home

freefileviewerdmsetup.exe

Bitberry Software ApS

The application freefileviewerdmsetup.exe by Bitberry Software ApS has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
Bitberry Software ApS  (signed and verified)

MD5:
fcbf445895d792282194d772854825c7

SHA-1:
a8d306dfba0a954367e211a51668882d98ec5316

SHA-256:
f26b465ece2759d32dab4117645b8d83d9f26209bea0f69f4a2e169b71c28975

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/14/2024 9:35:19 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
17.2.18.23

File size:
775.4 KB (794,008 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\freefileviewerdmsetup.exe

Digital Signature
Signed by:
Bitberry Software ApS

Authority:
VeriSign, Inc.

Valid from:
9/19/2013 7:00:00 PM

Valid to:
11/18/2016 5:59:59 PM

Subject:
CN=Bitberry Software ApS, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Bitberry Software ApS, L=Holbæk, S=Alberta, C=DK

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
23118AB330BEB5704ADCCE30BBB04D23

File PE Metadata
Compilation timestamp:
6/19/1992 5:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x9C40

Entry point:
61, 54, 9F, 03, 2D, 79, 59, CC, 07, 0E, 85, A4, 46, 43, 2C, 14, 67, B6, 00, 3C, 09, B1, E7, 05, 0E, DA, F9, CE, 04, E7, 6C, 11, 27, 3F, 83, 36, 20, 70, 57, D3, FB, D3, AD, 82, 6D, 0F, 41, 57, D3, DF, E0, 7D, 4F, 98, 01, D3, 2D, 41, 34, AD, 86, DA, 6F, D9, 6B, 4C, DF, 19, C1, 03, 65, AB, 14, 13, 36, 16, 3C, 57, 54, 85, 1C, 56, 66, 37, 62, E2, B1, 15, 8E, FE, D4, 4A, 78, E2, 23, E6, F1, FA, 1C, 75, 71, 8D, 36, AE, F1, 5D, D1, 0B, EA, 25, F8, 9E, DA, 08, 22, 69, 1E, 7D, 93, 86, F9, 23, E2, 08, 88, E0, 0D, FF...
 
[+]

Entropy:
7.8347  (probably packed)

Code size:
37 KB (37,888 bytes)

Remove freefileviewerdmsetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.