Setup.exe

ODM

DisplayTime Software Inc.

The file Setup.exe, “Open Downloader Manager” by DisplayTime Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Nullsoft Scriptable Install System installer. This downloadble file is typically blocked through Google's Safe Browsing technology in Chrome web browser.
Publisher:
InstallerTech Corp  (signed by DisplayTime Software Inc.)

Product:
ODM

Description:
Open Downloader Manager

Version:
3.0.0.0

MD5:
ad230f5d374a3a52eab134abf9201653

SHA-1:
d17fd02e3a1b851bbde6c07891df2e43a04643b8

SHA-256:
5ca0c8d0656900e5a6bf19f632433f467852606774fd3487144efb4a1a28ecb0

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 5:53:27 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Installer (M)
16.11.1.10

File size:
447.5 KB (458,272 bytes)

Copyright:
(c) InstallerTech Corp. 2015

Installer:
Nullsoft Scriptable Install System

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\setup.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
3/28/2015 7:00:00 PM

Valid to:
3/28/2016 6:59:59 PM

Subject:
CN=DisplayTime Software Inc., O=DisplayTime Software Inc., L=Dover, S=Delaware, C=US

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
228497A322D9856469F6265504405920

File PE Metadata
Compilation timestamp:
12/5/2009 4:50:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:jRTCOykx3PEo1twMaJ9s+3FO8j3flXQNjAX:jFJbxcok9saHzfZQG

Entry address:
0x30CB

Entry point:
20, 20, 20, 20, 20, 20, 20, 20, 20, 7D, 0A, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 72, 65, 74, 75, 72, 6E, 20, 64, 61, 74, 61, 3B, 0A, 20, 20, 20, 20, 20, 20, 20, 20, 7D, 3B, 0A, 0A, 20, 20, 20, 20, 20, 20, 20, 20, 76, 61, 72, 20, 64, 61, 74, 61, 42, 72, 6F, 77, 73, 65, 72, 73, 20, 3D, 20, 5B, 7B, 0A, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 69, 64, 3A, 20, 34, 2C, 0A, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 20, 6E, 61, 6D, 65, 3A, 20, 27, 4F, 70, 65, 72, 61, 27, 2C, 0A, 20, 20, 20, 20...
 
[+]

Entropy:
7.9146  (probably packed)

Code size:
22.5 KB (23,040 bytes)

Remove Setup.exe - Powered by Reason Core Security