home

memuinstaller.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from www.brotsoft.com.
MD5:
9b6e08335b144e48b0389774857ba9e2

SHA-1:
57428cfb3ec43dab3c7489fdb74e60c096966c74

SHA-256:
e09b5885b7f3901a18cdbb680e1e6170e531249484c9cdb6686ac8ebf274bd37

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 3:41:53 AM UTC  (today)

File size:
2 MB (2,149,004 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\memuinstaller.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
49152:8Y8InSx3WTf4VfrPm/hdYkNtGA//SO9tcig:88OmTwrP2hdrNtGi/SO9k

Entry point:
CC, CC, CC, CC, 68, C0, 5D, 4C, 00, E8, B2, 56, 08, 00, 59, C3, CC, CC, CC, CC, 68, B0, 5D, 4C, 00, E8, A2, 56, 08, 00, 59, C3, CC, CC, CC, CC, 6A, 1C, 68, 50, 64, 4D, 00, B9, 70, 80, 50, 00, E8, AF, 2E, 00, 00, 68, F0, 5D, 4C, 00, E8, 81, 56, 08, 00, 59, C3, CC, CC, CC, 6A, 30, 68, 90, 64, 4D, 00, B9, 90, 80, 50, 00, E8, 8F, 2E, 00, 00, 68, 50, 5E, 4C, 00, E8, 61, 56, 08, 00, 59, C3, CC, CC, CC, 6A, 10, 68, F4, 64, 4D, 00, B9, D0, 80, 50, 00, E8, 6F, 2E, 00, 00, 68, B0, 5E, 4C, 00, E8, 41, 56, 08, 00, 59...
 
[+]

The file memuinstaller.exe has been seen being distributed by the following URL.

http://www.brotsoft.com/lp/.../url.php

Scan memuinstaller.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.