home

Player_Setup.exe

The application Player_Setup.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from www.lpmxp2015.com.prx2.unblocksit.es.
MD5:
1ca357f207d2d7b80d9068fd9da7b0f9

SHA-1:
89066193dec52eb8e7745660f09ecdfee0097656

SHA-256:
8886aaa5f3e46499fd2df695bdfb8a8e8ced569c9f589be5e631f2837e8ec28b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/24/2024 2:33:36 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Win.Reputation
15.4.25.0

File size:
1.6 KB (1,600 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\player_setup.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
48:012GgrWwO3Z0+UApKSpK2RgaQRY5zQzZRY28LTUYqLObP9bqujW:vrWwOlm2RHLx28VkOTgSW

Entry point:
3C, 21, 64, 6F, 63, 74, 79, 70, 65, 20, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 65, 61, 64, 3E, 3C, 74, 69, 74, 6C, 65, 3E, 52, 6F, 62, 6F, 74, 2D, 66, 72, 65, 65, 20, 7A, 6F, 6E, 65, 3C, 2F, 74, 69, 74, 6C, 65, 3E, 3C, 2F, 68, 65, 61, 64, 3E, 0A, 3C, 62, 6F, 64, 79, 3E, 0A, 3C, 73, 63, 72, 69, 70, 74, 3E, 0A, 66, 75, 6E, 63, 74, 69, 6F, 6E, 20, 73, 65, 74, 53, 72, 63, 51, 75, 65, 72, 79, 28, 65, 2C, 20, 71, 29, 20, 7B, 0A, 20, 20, 20, 20, 20, 20, 20, 20, 76, 61, 72, 20, 73, 72, 63, 20, 20, 3D, 20, 65, 2E, 73, 72...
 
[+]

Entropy:
5.2000

The file Player_Setup.exe has been seen being distributed by the following URL.

http://www.lpmxp2015.com.prx2.unblocksit.es/.../Player_Setup.exe

Remove Player_Setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.