home

Setup.exe

The file Setup.exe has been detected as malware by 1 anti-virus scanner. This downloadble file is typically blocked through Google's Safe Browsing technology in Chrome web browser. The file has been seen being downloaded from www.idownloadsnow.com and multiple other hosts.
MD5:
e1b773ddeb8bb6b8b7546fbeb747e58a

SHA-1:
490ad730c82d675c497a5181813b5796c6118c09

SHA-256:
7a125edc94bbd14a6e5a170413ce1ca92d8682d7511a9e71bb3181a0c6673667

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/15/2024 9:37:25 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
(M)
16.6.18.10

File size:
1.1 KB (1,175 bytes)

Common path:
C:\users\{user}\downloads\setup.exe

File PE Metadata
Compilation timestamp:
12/6/2009 6:50:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6:idquvVg3F+X326e8peaPSQ83Jeb+d5ZAV6LWuEyV+TrXL8tTMfibFv/EluKBxEa2:e1GSG6e8psMSdwwWtTvIMfURmF7ED

Entry address:
0x323C

Entropy:
3.0409

Code size:
23 KB (23,552 bytes)

The file Setup.exe has been seen being distributed by the following 2 URLs.

http://www.idownloadsnow.com/.../dlsecureTb_1.0.4.1.exe

http://www.usearchmedia.com/.../dlsecureTb_1.0.4.1.exe

Remove Setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.