home

setup.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from www.url-removed.com.
MD5:
2ddcdc6cf44323322771fe2d14bfae9f

SHA-1:
3b3bc4db971a47c85d5746088aaff7443d2e154c

SHA-256:
2bdff0491c987b5f71176d4f488fde3240b5c5a79cf8f7f721211939dc61cda1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
1/15/2025 8:11:19 AM UTC  (today)

File size:
2.9 KB (2,999 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\setup.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
48:YZIx76LMcjGCHgVSUa/naZ0hEzC78Nh7SdWiz/uBBBpbBNjmBCAW9plsu3j:rV6Ii9Hvr/n00j78Nh7SdWiz/gBBpV+U

Entry point:
0A, 3C, 21, 64, 6F, 63, 74, 79, 70, 65, 20, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 65, 61, 64, 3E, 3C, 73, 63, 72, 69, 70, 74, 20, 73, 72, 63, 3D, 22, 2F, 2F, 73, 2E, 77, 65, 62, 73, 68, 69, 65, 6C, 64, 6F, 6E, 6C, 69, 6E, 65, 2E, 63, 6F, 6D, 2F, 6C, 2F, 6C, 6F, 61, 64, 2F, 3F, 75, 3D, 65, 63, 35, 64, 33, 37, 31, 30, 66, 36, 66, 38, 34, 33, 37, 30, 62, 35, 37, 36, 30, 35, 39, 38, 34, 39, 35, 39, 65, 64, 63, 64, 26, 6E, 3D, 57, 45, 42, 53, 26, 76, 3D, 32, 2E, 37, 2E, 37, 38, 32, 33, 32...
 
[+]

The file setup.exe has been seen being distributed by the following URL.

http://www.url-removed.com/

Scan setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.