home

installer.exe

KOMP-GARANT

The executable installer.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
KOMP-GARANT  (signed and verified)

MD5:
c7731a8834e37c3dfa5eb0f60a52b87d

SHA-1:
bc90e8ea187ad7490fe6157887dec329cf0686e1

SHA-256:
25cd6d14634950a2689d0fe33920a229a5855be9a44b6617518757b4c3182431

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/15/2024 6:19:30 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.2.10.8

File size:
838 KB (858,112 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\installer.exe

Digital Signature
Signed by:
KOMP-GARANT

Authority:
COMODO CA Limited

Valid from:
10/9/2015 3:00:00 AM

Valid to:
10/9/2016 2:59:59 AM

Subject:
CN="""KOMP-GARANT"",OOO", O="""KOMP-GARANT"",OOO", STREET="d. 4 korp. 3 kv. VI, ul.Kirovogradskay", L=Moscow, S=Moscow, PostalCode=117587, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00DDF03E3656C370A166F00225E6978B94

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x8AEB8

Entry point:
52, 51, 89, FF, 75, 02, 37, 90, 01, FE, E8, B9, 72, F7, FF, 4E, 90, 58, 59, EB, 08, 90, 12, 77, 04, FC, 90, FC, 90, 68, 30, AF, 48, 00, E9, 15, E5, 00, 00, 89, 0D, 19, 00, 49, 00, 87, 15, DD, 00, 49, 00, 89, 35, F6, 00, 49, 00, F5, 84, E0, F9, 03, 3D, CC, 00, 49, 00, 33, C0, A0, 4C, 30, 49, 00, 66, 85, CC, 01, 05, 04, 30, 49, 00, E9, EB, EB, FF, FF, 8B, 15, 14, 00, 49, 00, F9, 85, C9, E9, 91, D3, 00, 00, F9, 84, D2, E9, EB, D4, 00, 00, 68, B0, 4D, 0D, E8, D9, 60, F7, FF, C3, 89, 1D, 01, 01, 49, 00, E9, 65...
 
[+]

Code size:
576.5 KB (590,336 bytes)

Remove installer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.