home

setup_fst_us.exe

The executable setup_fst_us.exe has been detected as malware by 1 anti-virus scanner. The file has been seen being downloaded from channelz.s2.mp3.zdn.vn.
MD5:
a233b4bd37c258227cf8668977598387

SHA-1:
fcb66e2ae73741f0768d16d7e66a4d99fb47f0a3

SHA-256:
51b3ca37cc28c955c71a8f99f24ff2c78556b8348903cf8d4f123b71fb7b9d35

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/16/2024 2:43:18 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Win.Reputation
15.4.26.11

File size:
383 Bytes

File type:
Executable application (Win64 EXE)

Common path:
C:\Documents and Settings\{user}\Application data\serv\setup_fst_us.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6:qFzLMWNJk0QFp+/kFfCM1JL/YREdxWHiHUepvGnueC3tZLM6mqLusW+xsF720QFM:4NJvQFp+MFLJD64xWHiHrZeat1MPqLuj

Entry point:
3C, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 65, 61, 64, 3E, 0A, 3C, 74, 69, 74, 6C, 65, 3E, 54, 68, 65, 20, 70, 61, 67, 65, 20, 69, 73, 20, 74, 65, 6D, 70, 6F, 72, 61, 72, 69, 6C, 79, 20, 75, 6E, 61, 76, 61, 69, 6C, 61, 62, 6C, 65, 3C, 2F, 74, 69, 74, 6C, 65, 3E, 0A, 3C, 73, 74, 79, 6C, 65, 3E, 0A, 62, 6F, 64, 79, 20, 7B, 20, 66, 6F, 6E, 74, 2D, 66, 61, 6D, 69, 6C, 79, 3A, 20, 54, 61, 68, 6F, 6D, 61, 2C, 20, 56, 65, 72, 64, 61, 6E, 61, 2C, 20, 41, 72, 69, 61, 6C, 2C, 20, 73, 61, 6E, 73, 2D, 73, 65, 72, 69, 66, 3B...
 
[+]

Entropy:
4.8388

The file setup_fst_us.exe has been seen being distributed by the following URL.

http://channelz.s2.mp3.zdn.vn/zv/f5bd0a41bf8c08766c2254cc47ba1013/569a0690/2013/08/27/a/.../a7d7a309ac3bea95f969ae2e6b7a306d.mp4

Remove setup_fst_us.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.