home

Setup.exe

The file Setup.exe has been detected as malware by 1 anti-virus scanner. This downloadble file is typically blocked through Google's Safe Browsing technology in Chrome web browser. The file has been seen being downloaded from www.idownloadplay.com and multiple other hosts.
MD5:
0070082d478b0505a3d505775188a211

SHA-1:
fc70d67120b3c35a2b3406b607462f311720dc13

SHA-256:
c373f38f53b83381511b3f037d0465aa581f1cb733f38c0b9f39f69c02e2479b

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/15/2024 9:58:38 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
(M)
16.6.17.17

File size:
1.2 KB (1,201 bytes)

Common path:
C:\users\{user}\downloads\setup.exe

File PE Metadata
Compilation timestamp:
12/5/2009 10:50:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6:idquvVg3F+X326e8peaPSQ83Jeb+d5ZAVF+L1uEyVGTrXL8tTMfibFv/EluKBxET:e1GSG6e8psMSdwTa11TvIMfURmF7EhsO

Entry address:
0x323C

Entropy:
3.1581

Code size:
23 KB (23,552 bytes)

The file Setup.exe has been seen being distributed by the following 2 URLs.

http://www.idownloadplay.com/.../dlsecureTb_1.5.0.1.exe

http://www.instantdownloaderpro.com/.../dlsecureTb_1.5.0.1.exe

Remove Setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.