SETUP.EXE

Design Science Setup Utility

Design Science Inc.

The executable SETUP.EXE has been detected as malware by 3 anti-virus scanners. This is the uninstaller utility registered in the Windows Control Panel for the program MathType 6 by Design Science, Inc..
Publisher:
Design Science, Inc.  (signed by Design Science Inc.)

Product:
Design Science Setup Utility

Version:
2012.4.20.0

MD5:
8491f91c82fdb0f9ba64d5ea40f17ca6

SHA-1:
d44f0bf7a3cf2406c7a41b6def9d4482865c9706

SHA-256:
af05fc77ef63b2e2cf3de7aaf8325e1a270721c1f870c2671e839f17a7e89a6e

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
11/27/2024 8:37:32 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

F-Secure
Win32.Floxif.A
5.15.154

File size:
614.4 KB (629,119 bytes)

Product version:
6.8 (12042000)

Copyright:
Copyright © Design Science, Inc. 1990-2012

Trademarks:
Design Science Setup Utility is a trademark of Design Science, Inc.

Original file name:
SETUP.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\mathtype\setup.exe

Digital Signature
Authority:
Thawte, Inc.

Valid from:
7/19/2010 5:00:00 AM

Valid to:
9/2/2012 4:59:59 AM

Subject:
CN=Design Science Inc., OU=SECURE APPLICATION DEVELOPMENT, O=Design Science Inc., L=Long Beach, S=California, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
7653681CCE279A2BD2D942EF3C9C1E21

File PE Metadata
Compilation timestamp:
4/21/2012 3:50:44 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x3F287

Entry point:
E9, 75, 10, FD, FF, 68, D8, 14, 45, 00, 68, A4, FD, 43, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, BC, F1, 44, 00, 33, D2, 8A, D4, 89, 15, 54, 32, 47, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 50, 32, 47, 00, C1, E1, 08, 03, CA, 89, 0D, 4C, 32, 47, 00, C1, E8, 10, A3, 48, 32, 47, 00, 33, F6, 56, E8, AF, 10, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, A1, 76, 00, 00, FF, 15, C0, F1, 44, 00, A3, 10, 49, 47, 00, E8...
 
[+]

Entropy:
6.4958

Packer / compiler:
Xtreme-Protector v1.05

Code size:
312 KB (319,488 bytes)

Program Uninstaller
Program name:
MathType 6

Display publisher:
Design Science, Inc.

Display version:
6.8

Uninstall string:
"C:\Program Files (x86)\MathType\Setup.exe" -R


Remove SETUP.EXE - Powered by Reason Core Security