home

shouldiremoveit_setup.exe

MD5:
362bc483f3fdb82f0c6368e89838bb77

SHA-1:
d064bb8fee27ae895ef0b6e5e63299a09ee27a24

SHA-256:
bff6e0efe0e923056f73cc2fbb65b7c12cfc85748780c4694d3e4a0647ce9b82

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 10:48:51 AM UTC  (today)

File size:
2.1 MB (2,178,872 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\shouldiremoveit_setup.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6144:X9dAwWg1nHFh3umCw6A8j3dSF9IcA6u1mAlB4mcApmk7pf/CFjcgCTUmh0M5J9QQ:ZWDKTSxz5J2Bp1PY

Entry point:
A0, 00, 00, 00, 02, 00, 00, 00, 55, 06, 00, 00, 00, 00, 03, 00, 2F, 06, 00, 00, 00, 00, 03, 00, 00, 00, 30, 00, 00, 00, 00, 00, 0E, 2F, 71, AF, 51, 97, CD, 01, 00, 00, 20, 00, 00, 00, 00, 00, 00, 00, 00, 00, 20, 00, 00, 00, 64, 00, 3C, 00, 62, 00, 61, 00, 6C, 00, 61, 00, 6E, 00, 63, 00, 65, 00, 2D, 00, 73, 00, 74, 00, 61, 00, 72, 00, 2D, 00, 53, 00, 69, 00, 6D, 00, 33, 00, 33, 00, 2D, 00, 54, 00, 65, 00, 63, 00, 68, 00, 6E, 00, 6F, 00, 6C, 00, 6F, 00, 67, 00, ED, 00, 61, 00, 2E, 00, 78, 00, 6C, 00, 73, 00...
 
[+]

Entropy:
3.8373

The file shouldiremoveit_setup.exe has been seen being distributed by the following URL.

http://www.shouldiremoveit.com/.../ShouldIRemoveIt_Setup.exe

Scan shouldiremoveit_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.