» setup.exe
Overview
Analysis
File Details
Downloads (142)

setup.exe

Secure PC Cleaner

SYS SECURE PC SOFTWARE LLP

The application setup.exe by SYS SECURE PC SOFTWARE LLP has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The file has been seen being downloaded from securepccleaner.com and multiple other hosts.

File name:

setup.exe

Publisher:

www.securepccleaner.com/ (signed by SYS SECURE PC SOFTWARE LLP)

Product:

Secure PC Cleaner

Version:

Secure PC Cleaner

MD5:

cef0130821436f096b10921e17450371

SHA-1:

e1cc4449627d1b4910dd2f6b564c2fe1bc711451

SHA-256:

3643e1d94df8b26c98615f3d525e4b10e23780889bb3d4377998c8636ac8c0a5

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/5/2024 10:20:41 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.SecurePCCleaner.SYSSECUR.Installer.Meta (L)

16.6.14.10

File size:

2.7 MB (2,879,936 bytes)

Product version:

4.5

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\setup.exe

Digital Signature

Signed by:

SYS SECURE PC SOFTWARE LLP

Authority:

Symantec Corporation

Valid from:

2/10/2016 4:00:00 PM

Valid to:

2/10/2017 3:59:59 PM

Subject:

CN=SYS SECURE PC SOFTWARE LLP, O=SYS SECURE PC SOFTWARE LLP, L=Jaipur, S=Rajasthan, C=IN

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

26DC4AA5B755C1CF47EF06729B21AB5E

File PE Metadata

Compilation timestamp:

7/16/2015 6:24:20 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

49152:P2PmDH0I456TnNUe4dw/rxgFCoaHN/aWkEkYyI1lqhivGnFy90JCC7bW:O+70Z56TNFFj8Co4NCWkEh7qcvF90JCL

Entry address:

0x113BC

Entry point:

55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 34, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 1E, D8, FF, FF, E8, 6D, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 33, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 54, 86... 
[+]

Entropy:

7.9782

Developed / compiled with:

Microsoft Visual C++

Code size:

63.5 KB (65,024 bytes)

The file setup.exe has been seen being distributed by the following 50 URLs.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1054&utm_campaign=1054&utm_pubid=513491&subid=[DP2]&programid=178321&visitor_cid=213vXp00000dvgxo1vhKg21AGalf000.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fDVjNXBmc3gwNTBoeXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70447034&context=adkm_cfacb8d0-dfa7-4fe8-8756-6b9610c0621c

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70447072&context=adkm_a7fe03bf-f162-45d5-8d53-018f2436b030

http://securepccleaner.com/getip_build_lp.asp?utm_source=1059&utm_campaign=1059&utm_pubid=&uniqueid=3nEiKrEmi2SaeOCl5LrPuecltYbT_nKKZStkoUhxH9faQ93XSbF0QCLZENzgA1kvpqG4Yg4NGZ2GUIBUcIxX7EmT6cgxQCpr6878r7RFs8KOR7dTmaYRyoZ5OZgr_7wZru6Ia5xYfmIU3V2-kTOJKKN8vTRMBulT6Gs5e2cfEnaXoGxHAg7fkKr5pSbr9dwL8cw2xwdBa0hjhy4dAyiB-2dZ52TXFiemkxuLtlzDjGoaRZB31KlWW6S4fzYnWOXwx7vzX3VhlriovzXHtDcrE40TKj3i4FvAJ0ebXMf3_eAPQBrZzvSkTOfgHP-d0i0K75GZnAtFUjLedX0TFf_nQU_SHYbliluaBc84zPPcYfkuNEug1cCEL2tvI-gL8vYAsk2G3AGyynbxk6RQeTUjdNBX5Q-xPK27sgr3u-S7yALip_yB-fDlYGgroP-plmxFH05kMW8Hp3v_WA

http://securepccleaner.com/getip_build_lp.asp?utm_source=1054&utm_campaign=1054&utm_pubid=513491&subid=[DP2]&programid=178321&visitor_cid=213vXp00000et9kM1Admoz1AHg7a000.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fDdqNDNtMWUyb2Z0YXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fGV1djRqOGZxM3FtNXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1054&utm_campaign=1054&utm_pubid=513491&subid=[DP2]&programid=178321&visitor_cid=213vXp00000RIabz1vdQjp1AFRcx000.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fGU0Z2lqd2JjZzh4MHw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70446950&context=adkm_7b2d8c2a-5f82-4019-94bb-42a722c91c00

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fDlmNG14dHk1a3p1OHw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1054&utm_campaign=1054&utm_pubid=683496&subid=[DP2]&programid=178321&visitor_cid=213vN9000013YVDS0zq6N11AHIop000.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1054&utm_campaign=1054&utm_pubid=513491&subid=[DP2]&programid=178321&visitor_cid=213vXp00000rKmnJ1dkuK61AGW8v000.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fGYxMGo4eXg4NGEzdXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fDl1Y2YyZWhoZXJkbHw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fGs0aGpzbXJxOTM5d3w

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fGRpNW40dTJibGw0Y3w

http://securepccleaner.com/getip_build_lp.asp?utm_source=1059&utm_campaign=1059&utm_pubid=&uniqueid=Ni3caVBMIpwFOJFm9Fhf17C9rMA1VLyBagbnZji0Y6tr_z9IK0_RXIsk_ERe1AbVBG3oV4BoYdFDrST1ATVzVHaDaHeK7iMYu2S76hplv4QCipZNFzjYa_3xdzWQinCd06wSd767uNPaxfibx5F3xVlde1Dex_lSSHUrh6rVMMi1jnPtlHDS0MRiOBe5UqQC31KUuFbRMmYrl35IoBZg-SGECKpgbirnJ8I93le6XSpyg_ACPlW5Y39iGflKWjJbiPSd10NP0AOSDw7OLiXr46PMcuQfRZfHP-izcYxHLhggUzPGCA2Xq7LBTLQMSWTShBusYqR6Oy5WuT_Ga1h60IPBX1CY4v_RB9CM1T1HV5x7WJ0h_7a8Jd67HtzsRqS5c22nRcooP7rsIBWIS-fb8eOCpvYAB0TGwbSKlXe76wfLrPu9AGlHgoSX2WUJSluifHhts2dYoX8DKKvKcmQ

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70446166&context=adkm_501961bf-b58c-4561-a596-0e3716d655aa

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fHBtN2c1cG9taDNieHw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1054&utm_campaign=1054&utm_pubid=513491&subid=[DP2]&programid=178321&visitor_cid=213vXp000006Qdh31Gzcnv1AHDlY000.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70678104&context=adkm_eebb8d31-c3a6-4eb7-af02-e1cd47671b3d

http://securepccleaner.com/getip_build_lp.asp?utm_source=1029sp&utm_campaign=1029sp&utm_pubid=764998162&utm_subid=270483

http://securepccleaner.com/getip_build_lp.asp?utm_source=1029sp&utm_campaign=1029sp&utm_pubid=763260299&utm_subid=270483

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fG9vOGV0OHFwN2Rra3w

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70447072&context=adkm_fa3592f2-260c-47a6-bc78-eec8731e965c

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70678104&context=adkm_1b06dfb5-721e-467a-8c24-dbcb0063b654

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fDV3emphNmlkMXB4NXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1054&utm_campaign=1054&utm_pubid=578621&subid=[DP2]&programid=178321&visitor_cid=213FeA00000cyKNT3bMo1n1AHmtl000.

Latest 30 of 142 download URLs

Remove setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.