mbam-setup.exe

Malwarebytes Anti-Malware

Malwarebytes Corporation

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from fs11.filehippo.com and multiple other hosts.
Publisher:
Malwarebytes Corporation   (signed by Malwarebytes Corporation)

Product:
Malwarebytes Anti-Malware

Version:
1.62.0.1300

MD5:
b3f52c1f402613b110ee66f5a3604063

SHA-1:
7e4418eb37778308d3c6b0d1f206427c1fac5278

SHA-256:
76d5b528117ca814d06148887b0a55fabb655b68740abb6f02ed467367c83b56

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 1:56:52 AM UTC  (today)

File size:
10.2 MB (10,652,120 bytes)

Product version:
1.62.0.1300

Copyright:
© Malwarebytes Corporation. All rights reserved.

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Common path:
C:\ProgramData\malwarebytes\malwarebytes' anti-malware\mbam-setup.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/24/2011 3:00:00 AM

Valid to:
6/5/2013 2:59:59 AM

Subject:
CN=Malwarebytes Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Malwarebytes Corporation, L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
635725F2493191F6F4F686234034FE80

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:LOlIA5Se0t7WeO8O/4w9wlkktwVBFTp7/33p1Y4fUnj7Ojyg1XxJlPa6+U/:KWe0ZWiO/4+YkRVBFTp7/33M4f+WjyWl

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file mbam-setup.exe has been discovered within the following programs.

BitTorrent  by BitTorrent Inc.
BitTorrent is a desktop application that allows you to work with torrent files.BitTorrent allows you to download files available as torrents, search torrent sites for music, videos, books, software and other free or public domain material.
www.bittorrent.com
7% remove it
QuickTime  by Apple Inc.
QuickTime is an extensible multimedia framework capable of handling various formats of digital video, picture, sound, panoramic images, and interactivity.
www.apple.com/quicktime
6% remove it
 
Powered by Should I Remove It?

The file mbam-setup.exe has been seen being distributed by the following 26 URLs.