Setup.exe

InstallShield

Macrovision Corporation

The program is a setup application that uses the InstallShield Setup installer. The file has been seen being downloaded from www.mmtech.com.tw and multiple other hosts.
Publisher:
Macrovision Corporation

Product:
InstallShield (R)

Description:
Setup.exe

Version:
10.50.125

MD5:
a6ac4d48fb9448c406297a49bc8abdb8

SHA-1:
263abaa0fe173ada1b5a92376fd1079dfb48178a

SHA-256:
807b8a5a61c7d30149d65f0862eef51fc86e322b96a956ba04ae30fec266632e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 12:44:47 PM UTC  (today)

File size:
2 MB (2,065,563 bytes)

Product version:
10.50

Copyright:
Copyright (C) 2004 Macrovision Corporation

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\setup.exe

File PE Metadata
Compilation timestamp:
10/22/2004 9:20:02 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:XWoii+6HatqX+eHKh/bP9PhhD6+RWo+5ohnu8vDJJT:XW0+vc+eq9bP9Phh5W3ohnhJ5

Entry address:
0xCE02

Entry point:
55, 8B, EC, 83, EC, 44, 56, FF, 15, 58, 21, 41, 00, 8B, F0, 85, F6, 75, 08, 6A, FF, FF, 15, 54, 21, 41, 00, 8A, 06, 57, 8B, 3D, 88, 22, 41, 00, 3C, 22, 75, 1B, 56, FF, D7, 8B, F0, 8A, 06, 3C, 22, 74, 04, 84, C0, 75, F1, 80, 3E, 22, 75, 15, 56, FF, D7, 8B, F0, EB, 0E, 3C, 20, 7E, 0A, 56, FF, D7, 8B, F0, 80, 3E, 20, 7F, F6, 8A, 06, 84, C0, 74, 04, 3C, 20, 7E, E1, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 50, 21, 41, 00, F6, 45, E8, 01, 5F, 74, 06, 0F, B7, 45, EC, EB, 03, 6A, 0A, 58, 50, 56, 6A, 00, 6A, 00, FF...
 
[+]

Packer / compiler:
InstallShield Custom

Code size:
66.5 KB (68,096 bytes)

The file Setup.exe has been discovered within the following programs.

Koolance TMS v2.1  by Koolance, Inc.
About 6% of users remove it
About 5% of users remove it
www.robotc.net
About 7% of users remove it
About 5% of users remove it
Publisher's description - “Configure your own levels out of a wide selection of classroom-themed assets: balls, cylinders, boxes, walls, line tracking tiles, and more. Challenge yourself, or share your levels with students, classmates, or teammates.”
About 1% of users remove it
About 3% of users remove it
About 3% of users remove it
ROBOTC for VEX Cortex and PIC  by Robomatter Inc.
Publisher's description - “The drivers for the CORTEX Microcontroller and VEXnet Joysticks are included in the ROBOTC 3.0 installers.”
About 2% of users remove it
 
Powered by Should I Remove It?

The file Setup.exe has been seen being distributed by the following 43 URLs.

http://www.mmtech.com.tw/.../PL-2303 Vista Driver Installer.exe

http://www.decimairborne.it/documents/Pubblici/downloads/.../Baofeng_GT-3-USB_Win_Driver_Prolific_3.2.0.0.exe

http://e3.nctu.edu.tw/NCTU_EASY_E3P/.../common_get_content_media_attach_file.ashx?StudyLog=1&AttachMediaId=96e98b20-9174-4a49-9af0-8c41d308b2f5&CourseId=f7244fbd-9147-4051-9612-75195db68770

http://www.gpsinforad.hu/.../PL2303_IFD3200.exe

http://cdn.shopify.com/s/.../1/0244/0341/.../Win_Driver_Prolific_3.2.0.0.exe

https://www.pyramidtimesystems.com/cdn-cgi/.../chk_captcha?id=30b958234a992641&g-recaptcha-response=03AHJ_VuujHo8qwZR0kuUHioHIcNZAemGRdoUNd5_FXxwcMT_pjoxzfollGWIwjzr4NIAx5iEex_6cti9DmMd1p4FUtfb5GOwjgIVqCF9-543RYeL8K2nPJbAcQkEyAe2L86kdfIvt7ALZjWbG2CUhs0jmkAws1OY4QoPFIR0qJZmC8YYnLX9gREcGlJL-3KRLhc4bCaSFrWM32osyuuSejmpqLHVh8yMwariXCCw4aura2UVj8YU3OIsfXSr8dBxcS6vM-S3tBpW95SgU6-rH3tMXf4UBX64XWQr9AxoDcxIpN-Oh5X_6XiyHFmIhwWD7IfhhXwJGQR5CuqXItW3TiZPDHHWqcHH6bfT4ls8UIiq0tCcrPXFpGHJRgKNJ2LZblOmeqCN02RJq_WZTudfTCjNc0vhI5HQF-rIrpVznpJZHJkR6rKN1rfhUA6el67bfYwTCRCJempYj4k9abFt_pOLAHdNpaARI5gm4MUSMD0ZxOCQNo-s5RCoiBtFus5viBGKwUJw6ub53ffkw2D_iKFTB180T9nNNttHMl_2KVgJxf3l0BdTUcvoch5FOnwgrF28oApJNtgM6A2qIUZg3R-8nkvhyOozU4AxHimO2tgEv4yd7_as-Yax6fRcNqo_xQLHYYT0bhkJWF1WUKT3QNL9qGkqUIWORcjdqhjkrs3Ai_W8xSSaE2KoslW3x8FfXgDSANLXj5tJPHCwKvWwmcchn0rw0B7RhqOTn5px7Hnb6vYkEkfM6I_5Sax3tzv8mnZ9BT4YCCLbnkY-Fivt7fIf6QZcTTl1DfA2f0Di5DWgQshjwy92PnDZt7IGxraTDo5VN4OC6GYQ8TzWBJQOW42-vOIl46H54zRpDCmsWo8_2WD9AYnjgwEG4UlrHHjtoi2JD

http://download1736.mediafire.com/883w7shpw2xg/.../2303 Win7(X32)(X64) Driver Installer.exe

http://www.alertegps.com/.../AlerteGPS_USB_vista.exe

https://doc-14-24-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/02plei3jrcb1qf1p967f42p33diqt7dp/1473998400000/10943148408802819542/.../0B75SZexGYCmfZDNwUHFUMEVsQUE?e=download

http://www.relojchecador.com/.../PL2303_Vista.exe

http://download1736.mediafire.com/0ygetde5dtcg/.../2303 Win7(X32)(X64) Driver Installer.exe

http://exeba.com/.../2 - Win 7 - Win Vista Prolific Driver Installer.exe

https://app.box.com/index.php?rm=box_download_shared_file&shared_name=ijuk2b7vrgjvh0onts2e&file_id=f_24015853465

https://drive.google.com/uc?id=0B8iU_AqM4epoa2w0dklrV0lzM2c&export=download

http://download2100.mediafire.com/ewwswry651jg/.../Driver windows.exe

http://www.htmurah.com/index.php?route=account/.../download&order_download_id=1306

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-q7dleLgHc10kc2cq6EHpxgpxqxToyUP4nU3lH_-JxWJpTTYJS8PJA2RLpHdxJkE0pXSQPIt7834jXjyRXCwNNg/messages/@.id==AJ12imIAA-9_V9_Y5AU0CDy3k68/content/parts/@.id==3/raw?appid=YahooMailNeo&ymreqid=4d71a7bc-a0e9-055e-01d6-d5000d010000&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBbsWYa2pXG3l2bDbMgHGX59j6_Pb7oM6ywu4Xi7Sjae1kCm138NnxfkDGFTZww6L4_-2ZtlT9A_pt3lDMkvO-73&error=https://mg.mail.yahoo.com/.../iframemsg?id=7b150bc1-16ed-608c-25a9-9ce80d76238a

http://wouxun.us/Software/.../Baofeng-Driver-Vista-Win7.exe

http://www.softruv.com.br/softruv3/download/.../driverusb_wv_w7.exe

Latest 30 of 43 download URLs

Scan Setup.exe - Powered by Reason Core Security