SetupDeletor.exe

Deletor

Basta Computing, Inc.

Publisher:
Basta Computing  (signed by Basta Computing, Inc.)

Product:
Deletor

Description:
Disk cleaner and file shredder

Version:
4.42.13176

MD5:
f28f4872a5eb0de40d921ee35c702a75

SHA-1:
ac76eee1f0abec6b6643561646a6d3e64f23cff3

SHA-256:
882cf88b3c20cbb21c24dd99cf357836387bae0654197d772d9286cc83de80cb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/28/2024 6:40:12 PM UTC  (today)

File size:
3 MB (3,192,832 bytes)

Product version:
4.42.13176

Copyright:
Copyright (C) Basta Computing

Original file name:
SetupDeletor.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\setupdeletor.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
11/1/2011 4:00:00 PM

Valid to:
11/1/2013 3:59:59 PM

Subject:
CN="Basta Computing, Inc.", O="Basta Computing, Inc.", STREET=PO Box 485, L=Kirkland, S=WA, PostalCode=98083-0485, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3C75DD97F133F1C2B889755838AB7173

File PE Metadata
Compilation timestamp:
5/27/2013 6:24:20 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:Qszjwlwg1w96Fk65LxEqjW/t0rTpf1/KFB+9Pk:ol6051EqMtKXKHE8

Entry address:
0xB2159

Entry point:
E8, B9, C9, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 10, FF, 75, 0C, 8D, 4D, F0, E8, 15, EC, FF, FF, 0F, B6, 45, 08, 8B, 4D, F0, 8B, 89, C8, 00, 00, 00, 0F, B7, 04, 41, 25, 00, 80, 00, 00, 80, 7D, FC, 00, 74, 07, 8B, 4D, F8, 83, 61, 70, FD, C9, C3, 8B, FF, 55, 8B, EC, 6A, 00, FF, 75, 08, E8, B9, FF, FF, FF, 59, 59, 5D, C3, 8B, FF, 55, 8B, EC, 68, 03, 01, 00, 00, FF, 75, 08, E8, 77, CA, 00, 00, 59, 59, 5D, C3, 8B, FF, 55, 8B, EC, 6A, 01, FF, 75, 08, E8, 64, CA, 00, 00, 59, 59, 5D, C3, 8B, FF...
 
[+]

Entropy:
7.4974

Code size:
919.5 KB (941,568 bytes)

The file SetupDeletor.exe has been seen being distributed by the following URL.

Scan SetupDeletor.exe - Powered by Reason Core Security