home

setup.exe

Cro-bit Ltd.

Publisher:
Cro-bit Ltd.  (signed and verified)

MD5:
72462f793e49eecfecc2cfba43417148

SHA-1:
ded35fa7fce537eb714519add1f0876db1b004eb

SHA-256:
c0e55a64b21e89f7c98a9d8749611613e325c2f43a741586c299b480c4f88b95

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/5/2024 1:50:51 PM UTC  (today)

Scan engine
Detection
Engine version

VIPRE Antivirus
Threat.5063288
50170

File size:
1.4 MB (1,484,184 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\setup.exe

Digital Signature
Signed by:
Cro-bit Ltd.

Authority:
Symantec Corporation

Valid from:
12/26/2015 6:00:00 PM

Valid to:
1/25/2019 5:59:59 PM

Subject:
CN=Cro-bit Ltd., O=Cro-bit Ltd., L=Stobreč, S=Split-Dalmatia county, C=HR

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
12834AB00E5B48DC770EE66B0427D2B3

File PE Metadata
Compilation timestamp:
6/17/2016 7:55:19 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:9tvlHIkVStlYm1uSQEHGK6QqRnXTWQ0x06ZDGpPk:9tvKksjn5GKgCQUe8

Entry address:
0x2146

Entry point:
E8, 22, 50, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, D8, 1F, 56, 00, 89, 0D, D4, 1F, 56, 00, 89, 15, D0, 1F, 56, 00, 89, 1D, CC, 1F, 56, 00, 89, 35, C8, 1F, 56, 00, 89, 3D, C4, 1F, 56, 00, 66, 8C, 15, F0, 1F, 56, 00, 66, 8C, 0D, E4, 1F, 56, 00, 66, 8C, 1D, C0, 1F, 56, 00, 66, 8C, 05, BC, 1F, 56, 00, 66, 8C, 25, B8, 1F, 56, 00, 66, 8C, 2D, B4, 1F, 56, 00, 9C, 8F, 05, E8, 1F, 56, 00, 8B, 45, 00, A3, DC, 1F, 56, 00, 8B, 45, 04, A3, E0, 1F, 56, 00, 8D, 45, 08, A3, EC, 1F, 56...
 
[+]

Entropy:
6.8955

Code size:
38 KB (38,912 bytes)

The file setup.exe has been seen being distributed by the following 19 URLs.

http://cdn.awesomeinstallerdomain.com/c?x=0EBXUadzx3CMwcrEOE7YliiCe0Xehi8llPo7EpyJIkU=&c=PiuzoYOmL6wTqDBFAhyftxL2vw6nmjOWbv5MI2hUveIsJLXvhFFwlkBsP0YgSSt6PZwk2PCEcdO11DCvZzRRUQ==&downloadAs=Setup.exe

http://ttb.updatevideos.com/download/request/.../Nd1Xco0h?ClickID=DESwCUHfPQAkJkUBAAAAADDfUwAAAAAAAABMAAAAAAAAAA0AAQAFEMzNagAAAAAAqDlrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNBcAAAAAAAIBAgAAgD8ALykdPz8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=&PubID=162546700

http://install.oinstaller6.com/o/.../Setup.exe

http://cdn.akndelivery.com/?ic_user_id=9212

http://files.open-downloads.net/v1.5/click/.../?uid=1612742762.440347.da591cab7a.7772.0afd4caa1a4de4f0fb16d0da46b22f44&sid=440347.7772&filename=setup

http://clientupdate-v5.curse.com/setup.exe

http://secure.19-pn-installer.com/o/.../Setup.exe

http://www.lpmxp25.com/.../Setup.exe

http://get.default-page.com/.../Get?p=3022&d=1775&l=1694&n=0&d1=1&clickid=ZjdXVpZD05NTY2MzUwMi1lODUxLTQ1MmYtODkzZS05YzAyNWVjNzhjNjI

http://vtgtrk.com/?a=831&c=2876&s1=bluestacks.softwaredl.net&consent2=4E42A4CB-B3B0-45A1-8ECA-39878BE09F2B&hash=Gbrols09VvpjDtNcBiykearMW5n_-Af5YJvhURzyE3-tRN7MUshBqCUUM8YnGll4TNg-XEj3CMx0QIO3Y7kPF4lK26awupidG1jlk7ipqIHpBrnlEI2uYgjVer2OrE-f-ZvAlZORwA34Cmc4ewKWlP5DB8kR3UTgQzVRkLJRS3ATd5-y_yq-fx22zicNIlnRK4BupevcUHON380EyK_0E8mkd_c6d4iqwla58JupTN0Ot_5tjg6LGotrCZDxl_2-ZFJJ-Buwu2rBSZehYS_FXFHkfSaa66G-NX6Q-ad5rvCc1HEmMsw517e498dGfGldcDCTfaJTBE9WpDFfhoxb6Q,,&ignts=142836198579592497&ref=http://bluestacks.softwaredl.net/.../

http://flv.hs1dmr.com/aff_c?offer_id=44&aff_id=1020&url_id=290&aff_sub=1592--1014--1387233213.5603--3f318c19cd&cb=3f318c19cd

http://ro118hhy92.down-with-load.com/d/click/.../?uid=1461018662mb95921270682&sid=11450&filename=Setup

http://files.getsoftfree.com/get/click/.../?uid=1917155821&sid=104468&filename=Setup&st=lp4default

http://cdn.downloaddado.com/.../setup.exe

http://downloadengage.com/Setup.exe

https://opensoftwaredownload.com/startdle.php

http://orbitum.com/setup.php

http://download.cardrecoverypro.com/.../setup.exe

https://downloadengage.com/Setup.exe

Scan setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.