psisetup.exe

Secunia PSI Installer

Secunia

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from downloadcentral.dk and multiple other hosts.
Publisher:
Secunia  (signed and verified)

Product:
Secunia PSI Installer

Version:
3.0.0.9016

MD5:
d8b9844fdfd05cd495f110fff11c1ee5

SHA-1:
25b25dce92bfc20fc69eb74fe60c5e99699d1159

SHA-256:
99912d5efd94fc93131612a6f0c6a4dca3919d32727b5fd4f46df8fd08d8056d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/26/2024 10:12:46 PM UTC  (today)

File size:
5.1 MB (5,329,480 bytes)

Copyright:
(c) 2007-2013 Secunia. All rights reserved.

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\psisetup.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
5/28/2013 2:00:00 AM

Valid to:
7/12/2016 1:59:59 AM

Subject:
CN=Secunia, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Secunia, L=Copenhagen, S=Copenhagen, C=DK

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7F5A0EBF4C576D5525ED9630CF0A66F1

File PE Metadata
Compilation timestamp:
2/24/2012 8:20:04 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
98304:vHgoOc6+PoNK2DmHbGVnJIUuijooooooo4Fz5vKDcNE4seMbenH5HJxNfNhNGP2r:Pvc+PoNK267SbuiooooooocVKSE4sb2h

Entry address:
0x38AF

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, 68, A2, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 90, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 90, 40, 00, 55, FF, 15, C0, 92, 40, 00, 6A, 08, A3, 98, EB, 47, 00, E8, 36, 2A, 00, 00, 55, 68, B4, 02, 00, 00, A3, B0, EA, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 64, A2, 40, 00, FF, 15, 84, 91, 40, 00, 68, 4C, A2, 40, 00, 68, A0, 6A, 47, 00, E8, 18, 27, 00, 00, FF, 15, B0, 90, 40, 00, 50, BF, A0, F0, 4C, 00, 57, E8, 06, 27, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
29 KB (29,696 bytes)

The file psisetup.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file psisetup.exe has been seen being distributed by the following 39 URLs.

Latest 30 of 39 download URLs

Scan psisetup.exe - Powered by Reason Core Security