home

itunessetup.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from secure-appldnld.apple.com.
MD5:
75fd7950eeb3213af99f49d4cf32283d

SHA-1:
a21686bc7e55d013b0b78f09ffb0a7f927a83035

SHA-256:
2a96c284d8abf3a723e5d171b1bfdac91d1ff2595a912626797c78007e41abee

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 11:35:28 AM UTC  (today)

File size:
18.2 MB (19,133,914 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\itunessetup.exe

File PE Metadata
Compilation timestamp:
6/2/2016 6:07:15 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:5wkHL1US38y6NW5I0ysz6gMlctvjWaNhgK/fcYvmarwf27V7P+EO7HiJBDkVKO:+kr1UzWVyuFKi//iarTBx9N7O

Entry address:
0x718D000

Entry point:
90, 90, 68, E5, 12, 5B, 00, 58, 90, 68, 20, D0, 58, 07, 5A, 90, 90, BF, 98, 05, 00, 00, 90, 90, 31, 04, 3A, 90, 83, EF, 02, 83, EF, 02, 75, F4, 0D, 6F, 5A, 00, E5, 12, 5B, 00, E5, 12, 1B, 00, A8, 7C, 5B, 00, 0B, 2D, 7A, 01, 3F, 57, 7A, 01, E5, A2, 59, 00, E4, 12, 5B, 00, E5, E2, 1B, 00, 4B, 19, 1A, 00, 5F, 19, 1A, 00, F5, E4, 5B, 00, 49, 19, 5A, 00, 5D, 19, 5A, 00, E5, CE, 5B, 00, 49, 19, 5A, 00, 5D, 19, 5A, 00, E5, 12, 5B, 00, E5, 12, 5B, 00, E5, 12, 5B, 00, E5, 12, 5B, 00, 91, E2, 1B, 00, E5, 12, 5B, 00...
 
[+]

Entropy:
7.9995  (probably packed)

Code size:
54 KB (55,296 bytes)

The file itunessetup.exe has been seen being distributed by the following URL.

https://secure-appldnld.apple.com/itunes12/.../iTunesSetup.exe

Scan itunessetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.