» setup.exe
Overview
Analysis
File Details
Downloads (80)

setup.exe

This is a setup and installation application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

setup.exe

MD5:

a90bb0552bc83cd5a95f558d037bf80a

SHA-1:

387b6cadd7442314634efb63e1d2b64e521afc8a

SHA-256:

ce82b5a3c7d51cce446c5be9335a9be9c9f09d9bfa2d88f0e5cc5ccab9a439c8

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/16/2024 4:02:28 AM UTC (today)

File size:

304.5 KB (311,808 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\setup.exe

File PE Metadata

Compilation timestamp:

4/13/2011 3:47:30 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

3072:Wo2mfma9KIPPPuvigq7Ld67dl8hl8LzjrRyyBYAoAF2HB+06NN0i+/5L:Wo2mfm0P8+wshl8LXrRbeB+zR+BL

Entry address:

0x9F3E

Entry point:

E8, 85, 04, 00, 00, E9, 37, FD, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, E8, 49, 41, 00, 89, 0D, E4, 49, 41, 00, 89, 15, E0, 49, 41, 00, 89, 1D, DC, 49, 41, 00, 89, 35, D8, 49, 41, 00, 89, 3D, D4, 49, 41, 00, 66, 8C, 15, 00, 4A, 41, 00, 66, 8C, 0D, F4, 49, 41, 00, 66, 8C, 1D, D0, 49, 41, 00, 66, 8C, 05, CC, 49, 41, 00, 66, 8C, 25, C8, 49, 41, 00, 66, 8C, 2D, C4, 49, 41, 00, 9C, 8F, 05, F8, 49, 41, 00, 8B, 45, 00, A3, EC, 49, 41, 00, 8B, 45, 04, A3, F0, 49, 41, 00, 8D, 45, 08, A3, FC, 49, 41... 
[+]

Code size:

38 KB (38,912 bytes)

The file setup.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_es&type=PROGRAM&Expires=1486641309&Signature=Q0ZnaLoslBpwlJlSXvGvsxIKvB2hGXHVZ9OOx596d7Hp7O8p76xGmkvU6ss6skUTqIH-N5s8Vgx7JYplyZcFPJ~FFBiz15HkYRMAh~noFutyFdrUBoNqJPYILiKyDrk3oI9kBaFEzRSFb6s87LOxCcS76eDVVCfNl1fGUCSBpz4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

&onid=2092&oid=3001-2092_4-10040839&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=security/encryption&topicbrcrm=&pid=13861582&mfgid=69731&merid=69731&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=6eef8c37ee4790f49507086c&viewguid=iWnjaHrXP7eAx0ajxt2GBS238snBV9OlVVfU&destUrl=http://files.downloadnow.com/s/software/13/86/15/.../setup.exe

http://www.packagesafenew.com/c?x=vxF2U0bUrd3op4SrmcaixN8 gB3RoQioorsx5QOYUhc=&c=oGsnQRj tvy76O2toit b2V QTtMD5PpQlbIe1vA0VhH7XnyKjcx6y35E5J3s6fj6jRv6HIZLE9kHSuNPu4rB4z/ayevxrQ1R0v9f2SmMnIdHwAqTTUx/HeLy3ANargtt1 5PYOYABwV9P 7nB4Nhg==&downloadAs=TomsInstaller.exe&fallback_url=http://www.vdgsoftware.com/.../uzcsetup.exe

&onid=2092&oid=3001-2092_4-10040839&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=security/encryption&topicbrcrm=&pid=13861582&mfgid=69731&merid=69731&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=1130a7a781fbf99cafdb76c9&viewguid=h9ideOcGUqLR92THh4BXKySJUmyMqd-uGhAS&destUrl=http://files.downloadnow.com/s/software/13/86/15/.../setup.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_es&type=PROGRAM&Expires=1480827381&Signature=FsrbtcwVt8adifRe1mJXaqyFcp0FgFZ06UiNJW4tOaarUgODibMIl~mnxPQiYxs9t~ZQ58xxXNSey4gl90wdtMzQDRG98yaDZp2CFZZGQ-IZkwh~GrnhX2Iv~p~LxWxJo5rxST7cmmgZZGemcJbkE4y1Nqdwqdt~jTcLrBxpLpg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1481489431&Signature=M3~RS7x2MyjqFBE2dvB2vb016nnlvYWP0lcMRrtq1Vnm-Lj7SLTAvHNRrKCIUDmT9LoQuwK0Hcpx9KfLab7dEd-FAkbAhzjjjopY5g0DN8PXg8PLEOlnpN7Qi9ykIxybEJvxmTiXjhEwcHoE6nvVEUEXNHmTPIB8H5hWaSgr4xM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_es&type=PROGRAM&Expires=1470589262&Signature=hTfPgFctlwH1F0yGKlaI4ODF1-xJIejHwCVs8UPKAA4Fc-f6F0amQb6KYlzdl-EqP34dx1tJ5to~UuKB7Nc~jZlKfiGlgzMQP5CNbsQeNHm2nTc343D9izOWsDZ8hFnUzFfKOlv~dpr6AjnjTdxCAlu~Ia1qXPHOP~Xp9XC2jz4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://cdn.tomsguidefiles.com/c?x=Dm5LipUCxtYD/faEuWcGpYERYEHnxqdDeX5WaqJs838=&c=ZDPOhdCBtDZdWVQByozinESybb6PGjmFSF50qYZ/Y3E9FpNaBCIh/0hEjMvMHeivl3fpBv3Q8dp2676aUi9W5rMZ15iLwJbAGE64UowahOOO2HbdGuCA6LmgOPGn1C9AbOmyGNOwf9xSlt7jSbvE2g==&fallback_url=http://www.vdgsoftware.com/.../uzcsetup.exe&downloadAs=TomsInstaller.exe

http://www.bitssigncurrent.com/.../hLVJlobvkyeeQ3SVxV9EdBJCC0CCQk=&c=zVjQPJ0rte9bqsNGXUR4FukmodRfZFOSayCIbF9GfjLG6IGJBYCAneF8AfKq8GsDxXl4bGQ8gGhi MLsGd6kXUYZDWpER VF4gA26gj5vi2AJPNxwyNwXjITNDIVZawB&downloadAs=TomsInstaller.exe

https://d1ob5g40gc5b6g.cloudfront.net/1/9193/.../uzcsetup.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1477956576&Signature=Hd-ujF0oKE999aSceu3ZN9S8PS8q1E8lp~SGVGWCwaIebrv1H05Qp5d479ZqnjnCMAUsuqXogCtMs1uY7fXw3M8qw4gdtFR07iJEBxwxOjW4uKQebTEEEa2l2WAeMtOcyX7zQWyBdX3C2IAC3DUAbMR7lzEG11jJxQP5FAZN32Y_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1476688122&Signature=b5lClLFcy2XE~xnllYwLFlROefs~fWv5uDL05BETkAVYY70ZWQAfuVg1eNl43gZKuH1dGEOcktjs7-vE-LMttqll3ug7EccXfWGdxILsXXgh~pLXJSV70o6LeKlxReEAmu2TaHY1B0H1nfuIljRMvhwet-7zC757vz6NRc85Csc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://www.packagesafenew.com/c?x=SF 4N8GXqKUs0At5WTFOG/tWt lN9ebl4tmlseRlxIU=&c=2BzaezXfw9IAlAdhkrXKpxG0cmhOvXs0FEN/CKDvq6uNPXk1X00z65EUbZ9m5IxLz9pgOA3IwCb1W7NY9I7Pt6XI/nDv3bZXaPLbAwzo1sFXZ/4yvG8V EJYzsPxhT9PnRYIwNsfeRXqRWvNHBDefA==&downloadAs=TomsInstaller.exe&fallback_url=http://www.vdgsoftware.com/.../uzcsetup.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_es&type=PROGRAM&Expires=1470627674&Signature=Cu5-nDT6c1tQUVyQiaU-E00k~zKuhMNAVN7fUHoFxVxyURVMDIj9SxIDYpnYgeA7CSeQAGlHerfXKV2KyUU5pS-FD3ExiMqwf-B~sluz3ORZ84uy~3dyQlT-GcLyxTSL9HaTMssBi9PvRCDKA-jGTA8SfdKupnapMyBkMVDkOjo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

temp:uzcsetup.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1476194557&Signature=ZUNgeFfAfFGn9G2jep5OKv-mqNZ6TxBwwSAKr0RLO9oiNCeAKkp-UV2hYxcuuRJAsHNS9-OCz8G82kLe6vTP14CcLCFdbhtr6j9O9XsGNwRpdELu9C8XVFWTCHgdV7FWmN0dF4fm7av8el98aAWfgTwYOvN~cr0JI~X1B2W6p-A_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1448772989&Signature=RiY9YRPZqlnjQEJJ0ydXIiEauOE3-zn0C26evR8F0GCJBRF75~y1yodm2SxspWJmSvB1BsByNBwgm4SSMxDYUZvPArXCfBreRcbBdNfHC9QL1VJwYjxc9P13Racg0gL58Xod6cJfk8mqmRyaqfh8G--xW1PGD9qvebvQQudbXA0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_es&type=PROGRAM&Expires=1445573194&Signature=CsNj94mvJtahJrd0f9zmze1pUkl4nLl5d4xb~hQBi3GE606OGTOa6YXGUrb4aAuBT5tfLsyf25ZBX7zcTs0r6HE~jV3Bo3imZrkLO62rSsmhhI6Oa7NirIQnVQHD2igDvpxZsVjnE3re1vXW5K3rQtnczXCEas6L~-XasM4hB7M_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://cdn.tomsguidefiles.com/c?x=FbKgGvtIbpwPNlx9H5jw940CA2jBbVZBJmxBPVsMV2Y=&c=v rQW5M0jHMNKtYIYGhusdf2dl66Z6JFV0hqpXXV6Lc9ueQl4BqUEEEsWaPSi9c43XbUEE7MO3zy MNm N 5I5Nwz8fDiFPfESNM3cQxgBykn04sZ6/4uGOeJUXTyWYwO8ZOMPQ5rjlwxf4u/oJ87Q==&downloadAs=TomsInstaller.exe&fallback_url=http://www.vdgsoftware.com/.../uzcsetup.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1476138500&Signature=dECrVhaAuqhgyCanw7Dad1avxqcu4Llj3sQlNnbYj49F8enmcvVRn3KXzzYKV7GgSOgIC2NvHoSrgKkYPryF1vueqHzvGsi~RY8ZuE4IGx-Z6Cbj-KyyxAdweB4t2G5wAqQn5oxKsKlEZHwTja9uw97-BfBqRLw~J6MbBf8Aiv8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://www.brothersoft.com/d.php?soft_id=8509&url=http://www.vdgsoftware.com/.../uzcsetup.exe&name=Ultimate ZIP Cracker

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1472113551&Signature=DKrPPxNxA3mFGSwGTFHJspYS7JtR9QVUGApp~RRc9j5X7F5xybhYtRIG3sruZtT73-jYMOeJ63QqmyJ-s~y-bhc9w87T7VP3nQDYdDEyLbNMERdiLiCYEoiJK1MYy6tUDWsusKSCBH0kgEfk6QO7JAhRHr5fR20FI78OoACsLvw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

temp:setup.exe

http://www.bitssigncurrent.com/c?x=1sw1gt2vCgZ/65FkyBOX3a9/.../TAUNGpjk9O8g=&c=Mr36WwJU8nxr6KWbNmrtvqvs4e3pitj7X1xJDcfkr88jOBeRgpU lRB58NsyGtLVZliQp0AO8Gn9FNvqH7I9WSk bscKZ2LFpVBzRn590m6cV24QIwbIkiFoLbZc2Ltx&downloadAs=TomsInstaller.exe

http://www.bitssigncurrent.com/c?x=X5ToEo StvJD3qr1/7O4N2rxVYTQy83j8fwvfh1 ZQY=&c=aDd4ypUEvSdXIviXIAxYNRUwFiNrLW/DLxz7Ozoos96ONdLt0ES0yTnqO2wTADT8uViwWvkdhaS/T3e7R/.../0aThMKuU&downloadAs=TomsInstaller.exe

http://ultimate-zip-cracker.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWtKkVpPZX4mzxi6Or5kAv/Wv6nemUtSpgwlqg/vDaWFC/d3gEiY0l g5oDo8qQ6k/.../pvdNpDoEcmhUsRlxuIapCJUTnKFHhDXP3LEH2upumWIgkgJp17PUmupGkgMh6us=

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1440322001&Signature=b8k2wH-RANYupDATd81mcdsQ52-WKd~7viIBFgASIrVvMzFWiduDq6ZD6PKAQt1q~7mh9ZcJMKg5CLfIJXjsdY-tXo8b-3Y~RzyWuUuSDkE9XgTJHK~K8jZEQdgggpxfenVKqKRTDfgKaRQS6BXgxAYKzgxs7ilNKNgnJy6Gwpc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1469297237&Signature=BS8ZvejxeKY5YDQVSsk3v96qFqBHEmYG8jjzvk9FuwWWFg~YjTxDw0N35AwEaj8XVC8oTatTyzmL40cF~P5-LdpAyLDEbOXJLzVVnwejl5IDA4aMXoSmXy0tRjcxTDv1DKCVItJOy3KLMAA1L-ojtbw2O37GVLZFs6zb75DgkDo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://gsf-cf.softonic.com/387/b6c/.../file?SD_used=0&channel=WEB&fdh=no&id_file=10154&instance=softonic_en&type=PROGRAM&Expires=1439527848&Signature=Z8jR8C6vJJB9TaH95Q3GDLrW5soNRqYALMLCmZ9tXle2JYJnCW9k~lUsjsghsU1qqp0ia5vnFS2vWcRUWp2z-b9GILQ5MPdIA29O1FwoM17dnk-X-WPa9BMLCowsAyOhhaMP0-tUOR6Fh3Edk7v5ewiWgIDWv8UB187pS8pfcr8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=UltimateZipCracker.exe

http://www.packagesafenew.com/c?x=8mg3Vk1ovIu9xdgK8UECE0pqOOdmyztmUCJGusL9ZlI=&c=MlUpRmx5G13eOuDjEals5YOtufa5NzCxTXVK7s6cVY4PTvX/NP/iiKRkmWc5TrLuDzQZisU01f6ZemlEwF1nR3jRzRFmcNYiz83q8zKL/RbUmhEQltjUUJQSjVLRCBR4nSOaEllx6MGy//kSbgDgSw==&downloadAs=TomsInstaller.exe&fallback_url=http://www.vdgsoftware.com/.../uzcsetup.exe

Latest 30 of 80 download URLs

Scan setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.