home

setdbroex.exe

The executable setdbroex.exe has been detected as malware by 1 anti-virus scanner. The file has been seen being downloaded from dgq0t2nte1tmh.cloudfront.net.
Version:
1.0.2.0

MD5:
45c49fc6eeec4361f4c2272b29f867ba

SHA-1:
869f193731aa2ed31b04147f89c8b68e91acfe9d

SHA-256:
3e68b410c6be5f44ad9745b1b5024f6944921bba91b1a0d22a832c6c1cec147f

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/24/2024 7:17:40 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Downloader
16.7.11.17

File size:
158 KB (161,792 bytes)

Product version:
1.0.2.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\setdbroex.exe

File PE Metadata
Compilation timestamp:
10/13/1999 6:09:10 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
14.0

CTPH (ssdeep):
3072:yGty4K5oYYmUghqjwvggmOPxFDv1q2pfgRysSEcVzGYo26VxoYr:9ty95lRUghqjQmiDdqFsbVJn6V2Y

Entry address:
0x478D

Entry point:
E8, 93, 03, 00, 00, E9, 7A, FE, FF, FF, 55, 8B, EC, 6A, 00, E9, 5F, FA, 01, 00, 00, FF, 75, 08, FF, 15, 20, 90, 41, 00, 68, 09, 04, 00, C0, FF, 15, 28, 90, 41, 00, 50, FF, 15, 2C, 90, 41, 00, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, AB, 3A, 01, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3, C0, 08, 42, 00, 89, 0D, BC, 08, 42, 00, 89, 15, B8, 08, 42, 00, 89, 1D, B4, 08, 42, 00, 89, 35, B0, 08, 42, 00, 89, 3D, AC, 08, 42, 00, 66, 8C, 15, D8, 08, 42, 00, 66, 8C, 0D, CC, 08, 42, 00, 66, 8C, 1D, A8...
 
[+]

Entropy:
6.9225

Code size:
96 KB (98,304 bytes)

The file setdbroex.exe has been seen being distributed by the following URL.

https://dgq0t2nte1tmh.cloudfront.net/setdbroex.exe

Remove setdbroex.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.