home

setup_extreme.exe

Forex Pro Cloner Installation Wizard

Forex Pro Cloner

Publisher:
Forex Pro Cloner

Product:
Forex Pro Cloner Installation Wizard

Version:
1.0.0.0

MD5:
0d26d6ee5dff6d201d5e5571be03bd18

SHA-1:
a339fdcb3d546edf2d4bedd0c0266fe530dc906b

SHA-256:
0aa7ec1e1fbece7ccba84c2c8b41a753e3554fe114b4f67caf0f0754733282d2

Scanner detections:
4 / 68

Status:
Clean  (4 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/15/2024 8:40:37 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Dropper.Generic4
2016.0.2903

Trend Micro House Call
TROJ_GEN.R0CBH02J913
7.2.340

File size:
403.7 KB (413,400 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2011, Forex Pro Cloner

Original file name:
Mt4Installer.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\setup_extreme.exe

File PE Metadata
Compilation timestamp:
6/22/2011 8:38:15 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:MJW59PM4sceAoMP959g934wIogmoIRrZk9:Me9PM4scgU5tXmVRrZk9

Entry address:
0x47742

Entry point:
FF, 25, 50, 77, 44, 00, 00, 00, 00, 00, 00, 00, 00, 00, 24, 77, 04, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.7493

Code size:
278 KB (284,672 bytes)

The file setup_extreme.exe has been seen being distributed by the following URL.

http://forexprocloner.com/.../setup_extreme.exe

Scan setup_extreme.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.