home

nada_232_setpoint_logitech_32.exe

WEB_32 Setup

Logitech

This is a setup and installation application. The file has been seen being downloaded from d2.driverscollection.com and multiple other hosts.
Publisher:
Logitech Inc.  (signed by Logitech)

Product:
WEB_32 Setup

Description:
Setup

Version:
6.61.15

MD5:
c5e402ced9d7bf44c8bfc52174ec2bf7

SHA-1:
975eb0d11c09904a95dd2dd1df689f779c8e8764

SHA-256:
5d339dea9802595836c7810192f3fc828e19a4ed45c85f62f40df99afe8b0224

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/5/2024 11:16:47 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Fortinet FortiGate
W32/Urelas.O!tr
1/15/2014

File size:
76 MB (79,732,624 bytes)

Copyright:
Copyright � 2005-2013 Logitech. All Rights Reserved

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\nada_232_setpoint_logitech_32.exe

Digital Signature
Signed by:
Logitech

Subject:
CN=Logitech, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Logitech, L=Newark, S=California, C=US

Serial number:
60698458B2A66CAE5253F8E7AEED3AC6

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1572864:sVtO43LQ6Dtwo2a6BKGszGzAQy+XlPM7dyoXM2q81vpOfI1HoHUQPCBR7H:sR3LQ663BKHS06XFM7dy2l80WCBxH

The file nada_232_setpoint_logitech_32.exe has been seen being distributed by the following 20 URLs.

https://d2.driverscollection.com/1d39c9ed3352367/10f454ed3e6dbdbded8e07d5521ea19dd0f8a9db9841d0ed3ede7879319fc9e7c59f72d93703f539670828975b1d6380583a0aeb/3/98/9/.../setpoint6.61.15_32.exe

http://dl2.pcdcdn.com/files/jUJ8ryBbQgj7LIuOSeUtqw==,1476706069/2/9/0/6/6/.../setpoint6.61.15_32.exe

https://d2.driverscollection.com/4513757649843/96e7adc939aa3328702979c11c19f5793b96b1ce0fd9acdba653b83f33e9659053f8212d2a48907ef4dbd985587af35757f9292c/3/98/9/.../setpoint6.61.15_32.exe

http://www.driverbulks.com/.../setpoint6.61.15_32.exe

https://d2.driverscollection.com/1b015b14fbbb6b2/01ef2fa9fb9e46dc3bd63d2ce1e953735688eb056659949a594c84a445755172d88b886870c3fc44fa615d3b3c3631595757731f/3/98/21/.../setpoint6.61.15_32.exe

http://www.driversbulk.com/.../setpoint6.61.15_32.exe

http://fs30.filehippo.com/6136/.../setpoint6.61.150_32.exe

http://www.filehippo.com/it/download/file/.../

http://www.filehippo.com/download/file/.../

http://installeroffline.com/download_link.php?id=12736&window=Windows

http://fs12.filehippo.com/4766/.../setpoint6.61.150_32.exe

http://filehippo.com/download/file/.../

http://logitech-sjca.navisite.net/web/ftp/pub/techsupport/.../setpoint6.61.15_32.exe

http://logitech-louk.navisite.net/web/ftp/pub/techsupport/.../setpoint6.61.15_32.exe

http://soft.archive2.clubic.com/files/fe868cc696cdfd960cdf303cc9760c8b/52e28efe/.../logitech-setpoint_6-61-15_fr_404736_32.exe

http://fs30.filehippo.com/6613/.../setpoint6.61.150_32.exe

http://www.filehippo.com/download/file/.../

http://www.logitech.com/pub/techsupport/.../setpoint6.61.15_32.exe

http://download01.logitech.com/web/ftp/pub/techsupport/.../setpoint6.61.15_32.exe

http://logitech-viva.navisite.net/web/ftp/pub/techsupport/.../setpoint6.61.15_32.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.