home

setup.exe

Connectify

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with Connectify Hotspot. The file has been seen being downloaded from www.dropbox.com and multiple other hosts.
Publisher:
Connectify  (signed and verified)

MD5:
0a425c08324dd186ad1b3e5a4af7c7ee

SHA-1:
8a775dfc52f915e4204193f014f839d517db661f

SHA-256:
194d256991f7ded93b19cdc54df2c914980a511701e9a0bb0efd7b65f6327235

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 9:37:15 AM UTC  (today)

File size:
3.9 MB (4,103,160 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\appdata\local\temp\setup.exe

Digital Signature
Signed by:
Connectify

Authority:
VeriSign, Inc.

Valid from:
7/18/2012 3:00:00 AM

Valid to:
8/1/2013 2:59:59 AM

Subject:
CN=Connectify, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Connectify, L=Philadelphia, S=Pennsylvania, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0855405505DD76BBBC1941783142B1DC

File PE Metadata
Compilation timestamp:
12/6/2009 1:53:18 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:jaMXFpsT4qB2ILQ9IfijSWqSCeG0GwRvTJopzR0swf9xET:j9XqbijjqzeG0TvCpi79WT

Entry address:
0x36A0

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 88, A7, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 80, 40, 00, 53, FF, 15, 88, 82, 40, 00, 6A, 08, A3, B8, 63, 42, 00, E8, EE, 2E, 00, 00, A3, 04, 63, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, B0, 0C, 42, 00, FF, 15, 58, 81, 40, 00, 68, 10, A8, 40, 00, 68, 00, 5B, 42, 00, E8, F4, 29, 00, 00, FF, 15, B0, 80, 40, 00, BF, 00, C0, 42, 00, 50, 57, E8, E2, 29, 00, 00...
 
[+]

Entropy:
7.9755

Packer / compiler:
Nullsoft install system v2.x

Code size:
24.5 KB (25,088 bytes)

The file setup.exe has been discovered within the following program.

Connectify Hotspot  by Connectify
Publisher's description - “Connectify Hotspot is an easy to use software router for Windows computers that utilizes your PC’s built in Wi-Fi card to wirelessly share any available Internet connection with friends, co-workers, and mobile devices.”
www.connectify.me/hotspot
3% remove it
 
Powered by Should I Remove It?

The file setup.exe has been seen being distributed by the following 22 URLs.

https://www.dropbox.com/pri/get/.../ConnectifyHotspotInstaller.exe

http://www.bytesendclear.com/JBInUTizuaWVeDuFUlykvuno89aX8t5NN50X7oAOERgrFDV9N9dIf eXjaIqe_G11H9e2qy4Xjxt29S09v0X46RilLYeKgjrXlFIA fpXtl6UKZ6xn4G4sVLIkkrlhhxcqIpSIwDant1T9k7SnNi607M8 _XMhgpyCh7QedDURvDA Zm1B0grSA_c3fppkoM2o kMHqCTbY61eutmjmab9eCrNPbdlh69AxKZweqGlLSg31NKtWesFgdEECCqbiHPmG9NC5GVCsBkmbVvkYVCez7Yf9KsulCx K6KJCRsAWf8mPVLNaRywS5KOAIln1oDL4BUAYwoqAGQU4wKtX_arfQILB 2AhMdJcauqkf8 wIX2OBJTuOQfuZcynrVnKP2WAcJN5wvxX MUd1GDwIc2Ohrdu_QD85MEblZhpEBaR8ZDMfG3zhm_g1Pb9CLHuaCm6Q5MQew njyf3K_nAEGyuBLjijt_R2wBui7_voXMoV6EcO7iA39YGHYgDXxZuJ62bx EjspCn6M6CA NPxU0lFFBD4D18slQrMrYaibJDsNQcbF2IsCU09HIdb1EIyx_jGJRZQ_5OS4Cylb72CBxWLH5SPGOD2zhnS88qLcQ5_Rnl 86w=-G2wAAETVTapvxvIEh0AT3pMG8i37BHfKgUNLMyiVMOAD4D3GhvEspWQJ2xiOVOQei1tcbfBt9sQS_3Q9kPUgbirrk536PT_72pnAsVlOt6xjJsMQgh8=

http://www.bytesendclear.com/NW 9IdoLNPwD9sqwX9MoSug1z7aXnLUSFGQHAbu13zuc9EurIuiqsNxwiaQBd0r92THx3aGWZqgJcSJJ9HgN2PGchCn8C_ytzAVezvZqo7fWsXZnESQm_gHfW37P7uPBs7dQcAzP8IwxQxuDVOD9TEKsIBXQpuWI2P8oZ17yJV8M65SPLOXi8QM0Q fRHvlZr_zCsaJfOxMKwp47LKbXIuGmZ9sCt8Lmxcol3jpPHn5TToHAksUWN2OSa_OdX88tMa16ziHJ6wzASZyOX_FXZeFdPB7fx6u_NdrfVhcQqnSlOcPSASGeuZu_tw5hyUSVcs_1ZDZF4 _NT0qXw2Z9ay3dQPa_YaYLXhY5EryYSpTdGJzmFueU7DcM_k4s5RCotjfDVVs_HdxYeBoa0sFRDEqAyGAB0WuN0c_zmH0tYyI3 B7WZnLaUyZdGR kGTAWkiKOv9UGTT7G3TCXfCCN05Aqur4GpPWnPT1BV9r6yywnbPF25u_D3ygX4o4wOfKzuAPXNH_O00fVeaKA2KiV8ASoDw0VGb8wty8W5LAmS5jpTBFWKgoyOwOBFEn0B0dHLvYS9GMwMmLGfVwPTetRxLSryMmpxG6dgOFefeZQb2a_wfuJCPc=-G2wAAETVTapvxvIEh0AT3pMG8i37BHfKgUNLMyiVMOAD4D3GhvEspWQJ2xiOVOQei1tcbfBt9sQS_3Q9kPUgbirrk536PT_72pnAsVlOt6xjJsMQgh8=

http://blogattach.naver.net/7eeb62d2c39b9a466888ead8e1057e05a0f50be87e/20140322_36_blogfile/.../Connectify.exe

http://www.bytesendclear.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

http://download2215.mediafire.com/42gpi4hh49zg/.../ConnectifyHotspotInstaller.exe

http://dkstd.tistory.com/.../cfile27.uf@26579D4852F5C6332D1533.exe

http://www.bytesendclear.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

temp:Connectify Hotspot Installer.exe

http://s1.download.net.pl/9271d4d668connectifyhotspotinstaeller.exe

http://dl.cdn.chip.de/downloads/.../ConnectifyHotspotInstaller.exe

http://www.bytesendclear.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

https://mega.nz/temporary/.../dxVFQTxL

http://www.bytesendclear.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

https://dl-web.dropbox.com/get/.../ConnectifyHotspotInstaller.exe

http://www.ex.ua/.../53014848

http://www.lelogicielgratuit.com/.../ddc135f2.dl

http://www.quetelecharger.com/download/media/.../Connectify_w.exe

http://dc36.gulfup.com/rGi41.exe

http://www9.zippyshare.com/d/4301490/.../ConnectifyHotspotInstaller.exe

http://downloads2.connectify.me/ConnectifyHotspotInstaller371.exe

http://downloads2.connectify.me/?src=

Scan setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.