home

setup.exe

BOLLOL.COM

Publisher:
BOLLOL.COM

Product:
BOLLOL.COM

Version:
1.00

MD5:
c9bbdc56397ab1fcba7509baa04dde00

SHA-1:
ff5e863994f6ccc54219fe57492f2d5e6534ed29

SHA-256:
6adf81cbe740bbc9c34a8506ad30dcaabbb130c2febe664c5ea3949b22953163

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 7:08:46 AM UTC  (today)

File size:
116 KB (118,784 bytes)

Product version:
1.00

Copyright:
BOLLOL.COM

Trademarks:
BOLLOL.COM

Original file name:
Project1.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\setup.exe

File PE Metadata
Compilation timestamp:
12/16/2015 9:34:07 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:gEPg5uEdh6fBK/5jpYXYqNUFLM8scM8scMzEPgq:gEPSdofBK/5jpYXYqNUFLM8scM8scMzI

Entry address:
0x1DAC

Entry point:
68, 4C, 7D, 40, 00, E8, EE, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, F4, 3C, D6, EA, 2A, 8E, 6C, 46, 87, 7E, 99, EB, 5E, 92, E0, 07, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 00, 00, 00, 00, 00, 00, 00, 00, 63, F6, 00, 30, 82, F6, 00, C0, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 02, 00, 00, 00, EB, 00, C0, D5, CD, 9E, 5B, 4E, 9E, A8, BD, 3F, 3E, F3, 6D, A7, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Entropy:
5.7826

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
84 KB (86,016 bytes)

The file setup.exe has been seen being distributed by the following URL.

http://download19.mediafire.com/tznu0r1iw2jg/.../Setup.exe

Scan setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.