setup.exe

Tuneup Pro

The Phone Support Pvt. Ltd.

The application setup.exe by The Phone Support Pvt has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The file has been seen being downloaded from www.tuneuppro.com and multiple other hosts.
Publisher:
tuneuppro.com   (signed by The Phone Support Pvt. Ltd.)

Product:
Tuneup Pro

Version:
Tuneup Pro

MD5:
1232415ca75c03f45ff93315aba0a75e

SHA-1:
9a55f1814f8c5c6c190855f1fd396cbf250f3e58

SHA-256:
68c5ff1bc22b6d020f0fc9cfbe3757528cd963a6718a9a0944bb17a0be0b432e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/5/2024 5:39:23 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Systweak.ThePhone.Installer.Meta (L)
16.6.9.22

File size:
3.3 MB (3,490,600 bytes)

Product version:
1.08

Copyright:
© tuneuppro.com

File type:
Executable application (Win32 EXE)

Language:
Swedish (Sweden)

Common path:
C:\users\{user}\downloads\setup.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
3/14/2014 2:00:00 AM

Valid to:
3/15/2015 1:59:59 AM

Subject:
CN=The Phone Support Pvt. Ltd., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=The Phone Support Pvt. Ltd., L=Jaipur, S=Rajasthan, C=IN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
63F838BFFC34EF94DD244DA012A2697A

File PE Metadata
Compilation timestamp:
10/13/2013 11:19:32 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:XelUUj9oPM9ZODBupD7mq+AVLboiNA4qBNKehrPOR0g4Wg7Q+RR8DGAA3zbJlU6L:yNJr7mEVlNA414rmR0vWwQ63zbJ/mIn

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file setup.exe has been seen being distributed by the following 50 URLs.

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=dmg&utm_campaign=dmg_dmg_SUBID_Convert3ESOla&subid=SUBID&SourceId=773&ccode=Convert3ESOla&CreativeId=2761518&ymid=00006c007095638ba4897a5568b6a284fc4fb&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=69898&SiteID=

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm1&context=mZ3AyyD-ytSIdKobBqmeDixz6TSzNigq7gClSibRj_UXmnH4qfamZp3MpkLyLKZEtLbINIVYWoEuo22aHfHoFeBd2CYZ0iMmzVR5kHILEDVirY40YQPote6adITaR1mKwCrHlor30zz76HMi5uktYJAy3ywzZIFYH2nGe_Nal7Fj5LLVscM7WWvTIsPEE5uOCjNJfZO030lrQ__EeryVkBC1zLExxTRqXMlkU3tXRwP1iQhrL9mSBsz48kSUkTr0NiiFiz_tdS8kNeksGZMxu-djz8f5aow2vfuBlZPV5B9pc6iNiY53isZAL9xeQs-bEdG8EYRYd6_BHQ9vUKw_oEnByeJ2Np1ZpPELswmjpbpRc78cfyMJWwoMyXAXE-bodzcw0ajxWhV3S4WpYqscTxNtHSAiF4y2YKjAJ5d3F9YWGYl1XjfF1-V3p2MZOV4&utm_campaign=newmarm135781087gr&vurlid=35781087&ccode=gr

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=matdc1&utm_campaign=mdc1_1058775&pub_id=1058775

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm2&context=fN0uKNejMgq3Yg_gdt4TJtOg7HC75aNy7SZMXIis9cE2hAH_fGxKKzx9egrdbG7oTwrNT773FblxE-pl1BDC5EerDKiGQvXmvbrILXDiKxac4g79pA3TFvSNMzdiSf6gg_ItNSVDQ9vvdonFVtQQGAdNgjBowRWkJfuHkoZJSFR6jo-R1m-J9KjnxkeAXaeuqTtUh2yBG6byzl7V-mMzv3cU2io2YcK5pbXVf6rrLk11rQKe6ypYOg02cCJhib2krDuBuIZJpdMnj3aPsB0JejF3BrZhr1VjuxLvoY37aek4ng06OiiZ9zfx4VGnclDeWrOabXbIw32OdeLExYlY3mMBX7C-JdpQWF-7tJXnb77YX-ZShOS1dDFcQFnnXoybMW6yyDBGU5O2R7vApPP-ghgQPmKJaZRpP230twRA-MmnwQrhjGZB8oB3uTSrzB5Q_1NR-PUK0oQ&utm_campaign=newmarm227571060ec&vurlid=27571060&ccode=ec

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=matomy1&utm_campaign=matomy1&pub_id=466721

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm1&context=lsWKx_HRICOAkph9Pn1KR2UtQ9w7RaZidCluFqEQF2gNN5of5BWIIGVZzROJhqCDLfLP0FzOQX31MUTf63637tFxOOY0lHJxXg7lkS9wdwrCfaXRjmHykgWfPlL0e7vMeLyTEdCuQsuudvfztm1s30V0kIpFsqbz1R5bF991r4tHfM10bNyqEYPI6jtzRFohGF3dlCWK7u4C4AYA1sQ4A6hzjy09-2qkln3EZRdUdYjn_Fek8iODpGXaLthq95TNhpp4DpuIsZNgNE31pbtyIOsH1EMSdoG3crxoOs_nvUk6I91nCPPwqrSSaqPxKktL9Naj6qR0HC44sDyoz8fl0oFr4LBIGOJuuE__gGXz0vdy0MSAohsk2QtW5ELJMplsOYzxqoX-tfZYbz1l-XMYAk9BqpVNJ437dPyh8Q&utm_campaign=newmarm137453274br&vurlid=37453274&ccode=br

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=mplys&utm_campaign=mplys_43501365_il&vurlid=43501365&ccode=il&context=lYt4mzPLUP8ZF4tq_iyYCEbdyOUYOvpOXVILL-yFRVPZM8mHGqyBGWma8tbJQOv5QWu49e5GDm3gCUXsWfyooPlDCf_oDns7w9RhhETqG6OGcMEKw3OZINYdWk8emvl7wxRjuJelhJydCUnkAzjI_ogTTYsqkuC2RsQMMWu3R9j3QS0Tn8AXRUPEa5DkwL6V6p-u15ohBfLIqRCTtqtB4AKpK0g8ETYHTaz9S0kNk7qAEXL6BnIgX6bv3p6PaKv0hkqxtcew-0VWPJYzaUVFAg-yzaQfSsHw9EOjHeMDAnuhRVfO62II0tOdD5vS42nqN71qewYlBSgSri0NW8FJyHGKBMQNqvXwe2E4XWN5T6gD4G4wNpsduOFDa4ygSvqs5pvIDJXS4C86b2f9hzKySUUx9teLlDxdW0E1fHPR0uWRuq51CXyf075ku7pekVyyptwMjY9PVW5vf3sxi37cfmkN5iP8hARwMf64

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm2&context=3JUwOSFksZVSCDoEvJNcSXz-guajfJ92UXdJZBbVwaxUpx4siKsiDw6q7aZcFVgMFXXOM1pqc6FCOZjNL3Qh6Kw9MFNSZ_4vzxhGWwpo0IhfnGVkGit9oDUtc8OhUDHZ1u2VDuZigtTdm5EED8rhwDwj91HnUIG5eWLcJzMASjuKtLHlgxb4hNGmSMEGOV0s3obuq5_UuG52Pb3z-5cyVt1crWZg7N8fc-adytVhG-KGcE2UxrQKdkr4Wh1iVLIwaksZYWswfUpqEyrfMk6L3uhss9r2HzXI4mHLFFvyyi_ccQRs--9U2bs0FSEJMf0kAGXerB1wrpT-X24r9g-afFNCC21yxlvQta9ugiowstF3ePF5ZCQ5YIj8h_ZFLKA4a2VFsDU1yswhndW1He8Qmg2DaVrfhhPooTaBV_xDYMN3XSJEnLER0Q&utm_campaign=newmarm233561417ar&vurlid=33561417&ccode=ar

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=dmg&utm_campaign=dmg_dmg_SUBID_MH2&subid=SUBID&SourceId=964&ccode=MH2&CreativeId=395029&ymid=000047f42358123a146588faf42e310fe2887

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=dmg&utm_campaign=dmg_dmg_SUBID_Convert2BRSD&subid=SUBID&SourceId=773&ccode=Convert2BRSD&CreativeId=2757438&ymid=0000373f0dd11aebb4760a917503ebc33ba38&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-7275877728105672052

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm1&context=utCIfRBSBbHSyU36hvN0hfM8Y8pGrfKs2ngqiLTHDU0gbvLcL8rgMk54lMxyDDwHqUY-aUgqazeDm8I7RrafMzQCTQji5Z1X81zrghK0l-JYAHY-KGonONJ7CspCG7VVEi2s9YqO6S-XoixHRMlZBwFUBXOvHKpi9yVTs4_x87pwzF8UMZfpx3EH91CM0iUy83VtP6VKc3DV4ctArl9HkPdQLHv50AqUViBhMcgBBULzltirvNIYv0ZUj6rMfmfqd-yqhxlaXj_TD1i7Icixjz-FMbdBRDXbkY1Kyyq4UkkoaU6ELW1rAYG2T8CZlbMlUaa0MSTtOFkXyoa2mptykTtzUkxRw5JgUURr_tyzNHaa-WWK7FJMpI_Dec5OTJgdjX2bd5be_1Og7rC_Y_KPklu7sCCAFw7T8iVoVOI1ZK1wgyrv334VTjUYnxJA8Kov4vyRD7XJ0BQ&utm_campaign=newmarm135621080es_bubble&vurlid=35621080&ccode=es_bubble

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=dmg&utm_campaign=dmg_dmg_SUBID_RMX8AR&subid=SUBID&SourceId=355&ccode=RMX8AR&CreativeId=28497679&ymid=0000331ea0db3b5914dcd9cc438c9f714ca7b&LineItemId=9678505&PublisherId=0&SectionId=297725066

http://network.adsmarket.com/.../iWhvm2acqZWLaW-bX8p6w4iQa5heoXqXiWKYmmCkgpSJkGqXYZ57lbdqbp5joXs?dp=w92-nFiytavTJ2dAoWA3wgbesEPzh7wd2uxgYv6Qq1OKuBQmZNXiw8Y5s0QPG7DQVc4r89Z0EoxdQCUspgCbZye72cQdc8KOHQ_3bdTHisHOhtpAhliTNDjn1o5mqgy_e8-_V-apkixHwBDoNldVJn67S8OtlaQekv4LNvxe2TzpOrFfS0Absq_9nTOo5srZn7CcB01XfW8mGPUVMvZVzWQ12IDX1s0j_atRunrOeUnwiKzEiDUptIfnhmn927IBmB7wEuMVn2kyvDORgnYXky9IlFEvx9TNw9Lo3FUqlI4voTEDJOUiDDAzizCxtfBGbjBdjMNZGgg8Bi0IF5qtpZ6g6B0ZF-4G6PQ7HFXKlNhDTx1VvthJ4i_Fc1Mx71ZwQEEIv5HxzQ08YW8

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm2&context=e8Fg8SQJwVQuM3g3vj7zYmJK1J01rJN-3j3baz0G7KiGoPWmsF3q8Whc1W8w2KgphJ-g_siKTPrB7h9nJ8zv6LK5o3EmQZI1iMjfTlgpe0viDYxbjjFOQBtnVlaiSoYQWnElO9g3o4QQERgSJ8tb3XRm0-4QRekh8_3LKZGL8HtfeiEyXQJ6COBX9e5YHIKbYgxJ010pxMmQ229f9VC70_bibzV4RYNUxx6QHFTfT7YVqpVVHKA0Q_zd2LcWewuW6jb4XKgRy2RQlTW7kWdPyutRiQ1gbFEeDS31OlzMN8ZGCNKnBRdmOkVYgnQXkWZVcndHN0qzp6OZA6TVM4Sp5pub1nYXyc0c3sw4x1643JQCkK6zWJ0wqXXV0eBy2Pwwb2CQSS-WBjt7DKwMhE-bFHs3Wp_ax_FYssUEYg&utm_campaign=newmarm237453274br&vurlid=37453274&ccode=br

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm1&context=phV5FIuQcyNwklUBrteO1eCNB9KwPZzSHPYCr5gq3Bt197EA1srgmVvWTA2hHTeRhTIwzvA1_EcAYtMXjXFc7DK-QmouGqSau4gRL40zCwIQAJT3pDlsiGii1jy1zw9jyAbfWCSygZTvPJ_GEr8eErwCtPABrcsOK71dYFtElwnO_7aJfODZQXyi80Q1su_1mpdEqQt7jOQAXQYsX8Z2cNkhkpOEAzHDQG_x3lIKhb7EYcXAss6GScXb13jlptiISzrlkalmN7IufMw6PdZ4z8HmqoF78N0ticJjOUXsB_XGbzw2ax6-xNT-x80N6A1fWnQln6pyITQ6zV4vo1-iZi0JIN2sDCErJt6lmyloF21Wri5AyRJOkjPTIHVUXQm_M9Y7Rs49dmh3NkVSttqFzQHFBmbUiQTLejKFQIQppwBha1AMRTFfW9zzYKgEpkpS17OvEtViyn2EdnH8oA&utm_campaign=newmarm137453274ar&vurlid=37453274&ccode=ar

http://www.tuneuppro.com/downloadip_2offerss.asp?utm_source=newmarm1&context=HzTsB_Z5SzWFXxHrViDeW7TMbOktRMkqIzWrXgL4Nt7nUER_rD0fXKafxVOf_NdHCt_Wwq8h8tBSMf9ulALBSo_4nmUi3bTpQI8OS0yQhLRFLqIk3hj6EsONiQSoXnkGNP4gt5eQP7-oJhZiXNOExJiCvvDAA1_41ZCH7vFbt0xXxggVjvHvcEXrLYEED40Acwf_8U4lGzeGj5SOXXG3zOkmCtIwQKgqMmd-bngU12LUwV40d3p0u3l9go9wq-Oelq8m-_exeD-uKdkYIbUeWUsjVaLM_DSsyB2NXgIUeJGY1Cy2q37Jcu4ivVHhl8nHKcKI6DSIXIqQps7jwngF3sxyvgLSNp2y8uiM0bvoVHfq3dfvACeBRjoTFuqIdD0iq2eO6tc1bPrLSiGT1cq62UiBzdC-ziA4AysWbsqErYWQhozt&utm_campaign=newmarm140961632pt&vurlid=40961632&ccode=pt

http://tuneuppro.com/downloadip_2offerss.asp?utm_source=tlv&utm_campaign=tlv&context=TR_02CMKMBzzFQSJ7C

Latest 30 of 70 download URLs

Remove setup.exe - Powered by Reason Core Security