stremio_setup.exe

Duhot

DeliveryFlash (Fried Cookie Ltd)

The Fried Cookie installer utilizes the InstallCore download manager which may bundle additional offers for various ad-supported toolbars, extensions and utilities. The application stremio_setup.exe, “Duhot Setup ” by DeliveryFlash (Fried Cookie) has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the installCore installer. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions.
Publisher:
DeliveryFlash (Fried Cookie Ltd)  (signed and verified)

Product:
Duhot

Description:
Duhot Setup

Version:
1.3.1.2

MD5:
205402613aa1aff73989652ff1663f2a

SHA-1:
0df42e6539c62b85df90d658b4d5cb2f90a87815

SHA-256:
542d4d5e6ccc7339e91e197e4b54368254b16eaf0ddfa297057580b67d904af6

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Description:
This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:
11/16/2024 12:41:28 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.InstallCore.FC.Installer (M)
16.3.24.18

File size:
1.1 MB (1,180,760 bytes)

Product version:
4.3

Copyright:
Software

File type:
Executable application (Win32 EXE)

Bundler/Installer:
installCore (using Inno Setup)

Common path:
C:\users\{user}\downloads\stremio_setup.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
12/17/2015 2:19:47 PM

Valid to:
6/2/2016 5:19:25 PM

Subject:
CN=DeliveryFlash (Fried Cookie Ltd), O=DeliveryFlash (Fried Cookie Ltd), L=Tel Aviv, C=IL

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121FE9A11A10286605B22CFFCBE758C366F

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:1S8a4+CVjMtI10V7zT8fK7izM+tW+sWti:1SGVo0a782itWS

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, 24, CE, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 24, CE...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file stremio_setup.exe has been seen being distributed by the following 50 URLs.

http://www.2016delivery34.com/c?x=Pn6rOSSn0pjKE1o0OsWcR/uD68GKDALr EsRnpg1GHk=&c=IOw3SKAVJpg8C87Pif kpt Yr9sCzr47k1XBaaACCumgYGatlWQqT6mJWxV3G20STrKj/r U9VXI/OBzKT0rjcsoNhyRMyN6 HfgCXfcue5M5E2WgL9EZ6xy4ZodcypbXdkJIyeAppUrzLDntrS4fn48rIy956x QOtndmlo688=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=dIYvjnBGCCQ7huHQ54ufUV6G5IjIzHnK2HJBaK3Ea0A=&c=Sx4NotHIdxxs8oeqEVCwFa/On89DYh6vU5R3AVBnN/NuEC9hZzBJDJv8IUu9pcMlJ1MuTZ504NvrrRyAslBsAH4Jjr8aFJXxaj5TGsZdWtbG0nkldABp2rJPvXb2BvXAFbVt0W NdbB4gAtHyFCDF8TsWcRAAsbtt/LSvXOHd9s=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=fZildrUW3KqYDjmEn5GQs0adlww9zf/F 8LKvRilabw=&c=xCXgGms5os8UORLtDT/fsSZsfL7QgoQVOBil0BxUDQfl4Vo pC1k88i1Re rEklRZtZXrwbiivtAkrXwC4Vdcl7vTaLjX4vDxWkzQSzxkGyTCHab7md1fzdwARNI0F0BQ/DGDLEpY7T1te3eNsMX8zgft20/vut0SNbkqTz6AzI=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=zJRD5IlRbOcUP1X9uYs3XuDuK7Tv4chISABCif3LF0c=&c=qwAJBtSO0g1YXOaxtBp3prWo7njgLdSjjT7VT4JEde5G5zd jiiiLoGK4y68r2dC/tpch/O4kKXPqJaKVXkxQkxGKqQjFAKmx/d u9QZ2KIOTF6VJtG8RIx9P7q5ANJaM/oyoxbZt60lVsP6pYAwZhbRb93zjSb/SVczAYKHn9k=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=U18ZeUx05iuris1Ez9dicbU1zfag7Vwd0r2KipCllOk=&c=J5nxpOn6IKBFyYxXuN ZpG9hW6Pv9VP9SD55k6sDtcDmAHaEvCcnrlCWq8rTLx1kqVK4Nkl9P0D0OO eETYpO9O4JMWTlV1SR0txo1mBISukT99FtX23vNft/nwzP0nJo m4RQml8MOvXnKt/ BkZGXicS4GVycv8WoTnk0O8wg=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=qfDuISPjxX t JjgcjtPMe8d4L8TcwmzDhanuO7HY6g=&c=pW6sNoaMtaFN4SrnpsHqebVkbtScPFgctKm8kn9yyZb6V3LGE4bbG1x2U/O0rVo2xYR7SwKV4YbboiKe8shxvcyTzoBl42Uy1NWV1FC8CvGS6rrBKeoxPnBKwek1rwvB 6j1Kla2c0p 6Bm2Gf2Fv QvF5ZAxsZl6q4nHgNMo9w=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=MSyfzQbsAHi3bGT2G6ElZ5FD7ur3vRrGPMmuKG7Mz7g=&c=YCMrWq5QjKLFSsPh4ez3ylEeMtRX8sgNuD5NxBwB1dhSqYSfQ45JQFIMI8AOJpzD5 wUhOL9/JovqL12gvARpIoVyYo 8YAdmHAxzUcOYbmNNbVc5Z14wYX6WlWQHhy62GyBgwYN4GFQnDVFyD6Yfk0TR0Dk5MmvE2RM//QyYY8=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=r82MK31OnXYQ1lNWgyUF9yrRFRiOhnt6j/QFe3opVuc=&c=NGkRel6HVZjviTSKKwqrnWkFgAWvicJ7/ bo2p10d55IUg dU5slCtGinbqrvlLWHhAi gB7BjDxxLrUXZ4hcOF9BbQccCjFzywOh8ukgID1v7MRgtGeGt4fYbewuAmtaNwB6M/igquPdjMEClD1iKMP8ZkdGtIJTyauOjV7VDg=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=Dv5tOchZ6cq R1GQ m0BV9vCWDGWc5GpVONUXbUIQQo=&c=BX0Qi0JO9tg4gBv8sN6W sQfcrE BEtQVGzlexROKIQZfuCR77pNXGcHNCyNw7t47CDPtku15SuTQ 0gDvQprnlWMKvbdFiQMB/uF7mR/e6sB3M6MhoQEI2BoG7GBhnEyMyBTEBhK4S4EtEUvi3iYdxdHe8PL2ahJhJx6JsBG0w=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=W/sw34fDBYP08In6ehCSx4imt8QhOAENi87jjHZfQKA=&c=wprlIoOKP1Ap6uY53PNZkZprfxTDwXQ1Ng2LtrGyEOImfPrP muX2w8xpcxPeBvhYf5UjR5KkpfYxqFy2UskGNi5lYHlV9Bgr9bHalzV89 /GuygAue1MQIUr8zCSV8XpXoffdSqr0 9YgJd0Y3T7nxwukBfo3wlgYhBtiLVG3g=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=cElwzSsHDd/y SrIuVPPD3iCvI2 mhcDJBLGG bPyI=&c=bzlRtSaX/4UInPUYKdAPd6keBFEH9T1dL1ODaoqsj2yYvj2Jh2VKc9mF4FXbNtO9ixctBr1h56hwYqqsDb iyO68 S5TdZXXpTsBGGroaxdEV6ee2ZfSMXAxHB ISTdJbLYozqwxglhTdGDCbalKLQeapBlE5NRnHJ9HS2B/NSc=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=kKnH1mhbWe1L7TlmcHJ0I /24zLB r6XYxJwQjkwRCw=&c=7YyA1KNUTw/7lC3lhWHzhAnamRzuJB651OK1CZiH3S71tU8Ndjfw8TuG90PrRJp1xGkn/vjqW50xv52HQJWN9P7ND5gi 52LMFC 5W0bqvg/ Z PNT7UtVLPpBkhvmHeO76i36X5c6bYsJyiOGJm mFWBADziKA44sgV9pNfukA=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=dRJiJ71sRrYqW0dFcJnSbFyrOPU4Ds 7UTA/MyNb Sk=&c=tCfgMCbj8yZxmcYSh2zFyFbviXTAAtvAK2av0 rk/3B2Pd3yiTbUIwtvuEFMKVoB3LG5T oMpYgXXNehImZsDEIStv2GN7Q/xSwblvSJPbxNmqLwgIPwYB8rdL6n81IFA36cqD3S4gOvZ5lczIjecyXauDjrorNiYAKZcRG73jw=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=AXQrWAk2E7Po5lFbIt9Qeb1uWpGEjyXBZB/E Tj67Kg=&c=x2eeIf9/c1qvwRBs5tYZIPjxhYPY6yc9NKAJwc2wcXky6 J7W7IJGrat1yU16M6liqBuBt3WsdYLEC3R 50BmroJOesC9rJTr3ZJEH/F4Iv1VWVar35hkgkNmIP3grIY RBmUJBpjWrpbOwHDuiXYrpLL20zBknmT/f9O44ukzY=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=Kt/d9GK0xsEerLyMjWnToBXNSJf/IX/u636Gn5YuAAo=&c= /0A17oTvITK1EexjQfrd2CZaX5Tg7DM5ghdLkh0aFvqt 0ZM7tJPM3fHzxXS3ckgCVBWB9x6yJxvM237 kVXZhyd5YR GLzlKyTQc7bnbUHQOspOGuxCdjzy9pv2o86N3m8DpMZylqqfyhUxkBE58VZcDUD3UgTxLBlHkkbgmI=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=uFxJhBJALhWE7Z BnRJQgfY2sve8ZKNy9tSDu4KCU2U=&c=PIUi3ZazvwVcSUGjxIJ1IwTj1ZYZ8 XXpw4xiQTJVjw6mm4wQ67nw74vfaDpQ8yO8sBv5qW4kjBTDyAVMiZq6c9i7k2 FquVOt2V2RhpQFO1MYSvMO/JdUyvBFyfjHFqMU94GeHxssgx51Kr3AWBGRWb6O4mxpyUslZSaWbXm94=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=znNhLng0fwjkg8lcXTtz0a89qgcHWfT108ogzQL/4tQ=&c=/uSLX/ibH6sTfA DlbRB7h1UZJRd1VRej3N2x6qY5KZ4u rsvnWMosjg/SkxDzBszgCbqcknnh9IO7d5LUF96t5Y8rKDaHtV9meMyCkn/V 8tUxuIJJId1RavAnYwErYoID2NaM596n6Ik6kEVZWnF763ujQFCmYieCgH5ghWw8=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=6uzwjHhdQCIIylJl ySjJ7GdSBFIaqB06 rYBcCij/U=&c=vIykDNWG4gI2qZID1qKcpBAIwuOcUh82YzZoe0zJ0qaV2u3wuj3YbsbJQX4R1oDjTyqzqYnL5lVd1VtY7nsaURUMYZVkn0LF4d7qgKOOgqn K07H/pjEoR6DJBZCzf01FJLquJ De NNf57YhkpyfBbm/SjcyRtENM7vC8H77XI=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=7rKWbJDaiWG/N33yJlgJ2JjjqsnCJDxz8O2OJMBgxr0=&c=sZUHbTdvz4zhmbSgbkWz5vVGryz0BcSE/Sa3AMJxkx1dEOrwCPVU3iwoQfvDDP7CPkZJDVxldyRPKLyR9Ga/iZRjO25bDkOOrX3sQGtzjWKDk1HUbGbEu8PN2Frh RZQFe4eYE4VW2e5gEeIOJjJwIZO1 rR1EinO//LIcUC8b8=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=APlbmoPa9jQd4ZW UsBgl6/gu/5EpXnyyracgBJtrIo=&c=HmaJON8ffcV oVtAfWmFIinKU 4rhM9c30QutmXexa5cGlOpCv0d96a2buRNHtKJ92JLYUiJWYObAUcJyG5EZlTPwmFrqhoFtgoa7zMmsKzNB0W6/3l2BWK7FDkRRwKeLPVFukdZwrPuKdyrNuoeGyfdKYvk6NsnrzIESDOh2io=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=r2Sq2WTcCYj 3erZyk51OVZ4Uh/ASqvFOHs3fHnAetM=&c=ZWKyDisUXY92o8haQyzBL4juNGoa7zpVYm7TgevwIYUZ9G77TmSDs 25kVMbKdJlHh4QhQGuDqTXrVIlZt/ifAanBzpQUKTnHTmh2k5QwulrhZqpt3PMHuply1SIhPMfg0q8VoxvIr1lAEqbxcgR /vqzxfyZSiyYJqZariH42Q=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=Vp4X0aQZnqEYPEraKRjFopXa Qb0fcT2SCyCOWic4pE=&c=DhRf4iGdewS/3cDeMhQe9IE7xAAPON0wiQ7U0hknvVkh2MacV1i5xK7tQfK234Ex1A5YN4MDJ7oyB6fdfQWrX6HMEoldH7a4Xwa/1q2gUbgGyfT7qmxXwZi /JLDzVUqrWbll9vz7kYrTq2XCBLFxC0plO/Le4dZsumNTVbUOZY=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=mdrNwZFa9qbwTDWmYNDCRlHXWuXx0EYyWt3ez9Yagg4=&c=UMXeE0ABO0qUgVNaNlOvJycZgCc0v4vDn9RBX665I1DRghh8MpRcBqEkW6TKZ0I3c9BU4U365d2vpRCU20jY3bmtKcSHP7Ocf1skHThTui/eHa2u lmlTWhJtdfJhrHI13XN7LPX7m3j7KobhELIO/tZ5BSv4k5DrpSnq017O7k=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=o pqhHL9BcXWQh1QIvqoqW PBKsH7gHzZr W0muovcI=&c=yYKvsAXEhHZBIos42WUQpDfVz87bWZ7OYrCMBbyrzmVJ6K/SKoop1sMY70GVrMK8NcB7S39UDaeVL17bFJWq9cVEx0N62gvWiyCOQfa81kZFbwgMdKMmjKQo4M4YBu2iDKTciIvkDsuTpSIXaDEuXLBGPv5F tkR2HMN1x19d0k=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=SVLUVHQ UzD7gqQoi34/H77MWhhkf7RxByefCfQDLoc=&c=IYXU1C3TC 9zqUM0Ibn7FOnU1Lx7Ga5QpdE1K71ugOP7JAV19nt8Oe9Z2A5Vy0nB2uSPxEM3rAyMNfv Qr3pTYzjeUJ9JcQC1Jm7Qh0lJxwhaxHIRbcjIsxn24j8aLpvEAxtpnHp3DP7vRyiSeKEhtwuEGhUHXklJP4oB6b8MKM=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=fkBGpeDVB5rv9bop53opUlGJNTtYn9shOZxrMRzGli4=&c=hn7g8 ngR4lLbX9XTrPEgPSci PBMpeQBqovdswPhYxb8gXyjqFEVhTS4fqfwC4H9D0m2BEu/T7Nlt 6KEiRS03VYqtTj9J0G h3Eh6xlhOpxlUy/zNgh/mPTDQhRq EhOAE5ZIabUC VtDFVKmfosYH0yNE1JBi eBkDBrQNVg=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=3C5pYks9SeG9GWQvDAGHV5Z/OxQarq8quEIpiSxJyuk=&c=OOAmdMnHiMk5NhaZms93KxOSNu0pRnK6kADkHO5DBnYkVwvfEwe4HYopIVyfTmcyxyaFHfbQCEa1TkRndLyFguRAwQAh4u5/r340VCCwpvLlACYKTzQ0kTe7zjKK4r66BnGgfW Jj09BbGZRqRMtIeBqTsTcSRqaV3vC4je3xRk=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=adEi15ozH1IvhFst/LbTq4J4IKwWVQOabjl5BUhO5Wk=&c=1fKSSfhGBRzwrQYze1/rqdl5mAezgoTiRmhreq4mVOaRdbnLIGg78xTdPvX4kcYaaZfCpBDD4uXsca6wRIbiZbLULEJVFrJLrBnVY5 LxfMJlkT1obDaY3BSjr9GHiQoNJbJYEuRBX/rnAaNkw/g3VaG4TxcASQqhqZhLBWTLF4=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=vDoIRY5Gk0DS5vzk4rXv/Olesdvx8xrSjsT/85/TpAI=&c=qV ixpcIclNjrhcY035C8AHxxfSyhY2bqage40zFlPLJa9v1OJoAaG6XE/HvNmiGAwIf5T1TI9AveWbN0dQPKVUKQz/rgC Aimxi/zlSKyVyKvVSH6bVRhKNgJJgCLylu9uy1MiAmyp31TtPTUS3nLkORA854565Qlwi4mjGQaM=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

http://www.2016delivery34.com/c?x=hvxovWoIyyH4zI4brm1 IRvhWIjrYdEO3nW0rMcsVzE=&c=1NnfcMy81uvaOw ijy/FcMZ5A4pBnZ YDTDxs8nzDd8Ua0UQuTc/wnXJ8OlUtZem0olBvrVloCjGMIhBdxdktOkbWRkaYv8s3qt0ZECBUODlom/Q8Wf3IojE2sU QgyFWK0LKAZWR0V1TOocpgQ8IzDNs7lFf8w77vtNxxrHb0c=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.9.exe

Latest 30 of 177 download URLs

Remove stremio_setup.exe - Powered by Reason Core Security