setup.exe

The application setup.exe has been detected as a potentially unwanted program by 3 anti-malware scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from files.airdwnlas.com.
MD5:
016b0336d7fa0fe4fcddea5837e89b82

SHA-1:
c199813f71f3f44087b7e4032aceef558065393a

SHA-256:
588574dd889c08accd1eed161f1136d5ccc72586dc0b8653a6503487898de208

Scanner detections:
3 / 68

Status:
Potentially unwanted

Analysis date:
11/23/2024 3:15:10 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Adware-BZI [PUP]
160518-2

Emsisoft Anti-Malware
Gen:Variant.Adware.Kazy.519742
16.07.16

Reason Heuristics
Adware.Generic.AT (M)
16.7.16.14

File size:
906 KB (927,716 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\setup.exe

File PE Metadata
Compilation timestamp:
8/22/2014 3:57:48 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:ZC70G5segIPAIvosCHWiCxGRp2k+KQsMw1:ZC7INjI8/sGNQsMG

Entry address:
0x29F2B0

Entry point:
00, 00, 01, 00, 09, 04, 00, 00, 70, 02, 00, 00, EC, 19, 2A, 00, 34, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 09, 04, 00, 00, 98, 02, 00, 00, 24, 1B, 2A, 00, 34, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 09, 04, 00, 00, C0, 02, 00, 00, 5C, 1C, 2A, 00, 34, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 09, 04, 00, 00...
 
[+]

Code size:
844 KB (864,256 bytes)

The file setup.exe has been seen being distributed by the following URL.

Remove setup.exe - Powered by Reason Core Security