» stremio_setup.exe
Overview
Analysis
File Details
Downloads (193)

stremio_setup.exe

Duhot

DeliveryFlash (Fried Cookie Ltd)

The Fried Cookie installer utilizes the InstallCore download manager which may bundle additional offers for various ad-supported toolbars, extensions and utilities. The application stremio_setup.exe, “Duhot Setup ” by DeliveryFlash (Fried Cookie) has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the installCore installer. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions.

File name:

stremio_setup.exe

Publisher:

DeliveryFlash (Fried Cookie Ltd) (signed and verified)

Product:

Duhot

Description:

Duhot Setup

Version:

1.3.1.2

MD5:

c1a54a93e5314972a36c7160c7324079

SHA-1:

db2fc0bf95345dd95e572a46a191a196cc47eb4d

SHA-256:

d68504d464c8d7cb304d091f91d6cf416e2852fe7e31cf70c96a7bf829226e7b

Scanner detections:

1 / 68

Status:

Adware

Explanation:

Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

11/16/2024 12:52:08 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.InstallCore.FC.Installer (M)

16.4.8.23

File size:

1.1 MB (1,180,760 bytes)

Product version:

4.3

Software

File type:

Executable application (Win32 EXE)

Bundler/Installer:

installCore (using Inno Setup)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\stremio_setup.exe

Digital Signature

Signed by:

DeliveryFlash (Fried Cookie Ltd)

Authority:

GlobalSign nv-sa

Valid from:

12/17/2015 6:49:47 PM

Valid to:

6/2/2016 8:49:25 PM

Subject:

CN=DeliveryFlash (Fried Cookie Ltd), O=DeliveryFlash (Fried Cookie Ltd), L=Tel Aviv, C=IL

Issuer:

CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:

1121FE9A11A10286605B22CFFCBE758C366F

File PE Metadata

Compilation timestamp:

6/20/1992 3:52:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:bS8a4+CVjMtI10V7zT8fK7izM+tW+sWti:bSGVo0a782itWS

Entry address:

0x9C40

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, 24, CE, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 24, CE... 
[+]

Entropy:

7.8758

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

37 KB (37,888 bytes)

The file stremio_setup.exe has been seen being distributed by the following 50 URLs.

http://www.downloadstowersguard.com/c?x=7r7iL35KvsL6aG//9StNXpFI7ZgUNPXgnJoai5u1vZo=&c=9hNQH0tCKeVBWaaStbjzaaE42CcWJ0n0mljuYfYuujvLHdvoyEgRTGhW8anBuRQrsbxVKxEdZCdN443RUyCJ6w38aY6tVgiKcV6uHRSgrxPeEfRXSSValKCh1dczkn4xfSylWhWegFOIHecyNoNrAEyFxugizz bGgIMoGzNJyRQaUFcieS3Ippkv1lkOTtv&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=JFnb9oB9UjQT3krq2Z70j65waf7SuI5kMcK7qGRvav4=&c=9WQBJq87g9Zy0 iGKxvc NiuAMDHnjqubGghK3pnkjz6 mJgxbOA jiaV27cW3ipg9RtpoccjAjYR am4GEbdyIq9qzN/fZ5Nkxp ZNE8YFtWLPNV6pdFVChnDnVve3hGNQf88/bj5BtTZvHvDkZWniBfKq1q4jaPWCUvXIzw6g=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=eQntU9EZ9B2ONjUQwJ8wkC5VriXWjGRRxLAL/LwpoNM=&c=U v7YZYvxqO6/FsMtiXbDjq2S4kXyZQxanw1PxT3nVfAbkdAD92MCyjFDjyZ28BXXepSgYsrOI82wBSxgzUriTwG5EIJhFXaMxBHhwIBlVkJDoO513x88fvfk/prKT0dBo0Ve0ebPrRrzJqgM2XusqbQqwU gYRplNb8SJhbQec=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=R7FSQDtfIjf7lBZpVX47AVA EHSG4JpywQoze17g/F4=&c=eIlEOXki27J5W5PeWBIQssZKE9Vmvkkh3S6Y0JGoxxNda0Qdz9OPDDdmJ5nnmHCTjrOBBscS6tgy3Uq8 jYzyO4OV0vKfIFNvDR4VWhc2zDMrWp7foXasUUHtDZgvTuukRn6zBE L3rtAVm9BNkbMkBVZdBFpL877PWR6EbadGc=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=GXoPbg7Lqw4VACni0JBay/OlMD1vvkyNKKmQ1CGCBP8=&c=AXKiydJRNn/JFWFmNXHJe56t5t9HcxBNnfbR7gdHhRVjMzr6d DnRUj3rmLPPzoNs9rfXvAOm2PHf2EYk2nMh7AhRbs4f a1iMGDY2oUcBiHSsD1AMzwcFRkQJLGrsAz25yb9zMWokN7YpSX3sRuxp5bx50zBzvMmyQbhp mH1A=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=J5RPIN8jTc6jCx0BXiKtfX aTPWnWNso351hipxBorM=&c=eFoEanwTMQjWAp3M2d9ZypEcu5DpnomphvKxogVVPaiMWommuKfCY0Ifj3Gacg 1aWReqRqJJqUZdRV o/56dfC1q5KQXCEztszRHlLZdpSvDpxTrAlX7QyGW8yeox/CXTuHJu3psy9PsKMMlmD1IcrukMjRpW4YHjHLl6mYJmM=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=kndUNiCV/EaH1/ZwFIgpHsACtEyKaO/IaDAGVziZMs0=&c=FkAL AmHGSm4rS4fzgaM/YnTqv3hwgr9mwG8G5m /Y8AMV8wOrtoG75MF610buGpgSz3uqj5rm1PWViu2Qu1/DcGs/zq7j6CQC KXHpdTQqRVUT58qFCCjV2cswdCVgbeEJyGneQ9IQCZrwdbvBoiyUrdHKprYdlqakmWSx1guU=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=8HUHAdqGYf5hLDTQQkBrxKST8DMWaUgHDVSijV81fyk=&c=ZG8WHjZsAlcp6lwIsRyzTMXzhAmeMrPk0tGVIlncHT9g wxU4r6qxGDilPgg2BBQXhQYLPKj3CO/Y2KiMszK4pafE5KO5k0YwzS bHqXNnSDXhP3SNJwNGnmMgwjpgugHeTg82JD WjlvxL St3bcLDivBAELx6fzIgjN6IXQY=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=0yXWpCFycqzp6Zn6D84yTpb10sPiKAKIJmascxYDH68=&c=HIOQ8ZG4FF xUu8kkc2CZKrzPVLY91JVog JIk xB40c5BdwGTsioYJ7GRss7su/XmhB1AXvCSt1mpiAa KQzM3i9UTw/K92glq OKjQzisEL2ENPyATYslRezLITboMgFqicmpY4QEhl9meEUcYnFuaF4Dwqn5 O4UUzmVS4E71X3w8qoxl uuM4E62BQ1s&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=XlUm2E0MeibREwF6Ct5f/qroUv uY HDC0r67d0BP1g=&c= xvZXdJ4PpeS6aSQMoB88AGiZMDSgbkDYb7DoFdGl0W taiSwr7y/gOmyWcf42Id5GiW6LQstw5mRst8ja7kTvpWMx9gvbo lvx9PHTM7S5qp 8nuS/ZcJ/gaQDMX85VkX8AIWKRL5JXiCNsKE4FFbbpaWtXHMSdSJAHt5lEcv8=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=0snfvkIqaOGBQbHM4QgDev1RHpfb /k2Uw/T7dBbUBk=&c=vHizo7iXIV1UHLgb/3GS2TWNrvNhv6ek7umlxkrNHfKPl2DZl/AEISypS/1oBIbQGp/tpfj7S7mJiy1FXY1SuU5ozn0HCciQt0CaQgbt0wPXFGYIBCeYHKb1U7a0vgTRXCTkhPwmAkHdrpdp9TwmVbh0DeSC FxilRKlaD3Mg4E=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=LLqrY8HonqraZxYL62JPg2veSZzQOE/ 42fLlV9CFDA=&c=Gn7LwFaZORFpuMRV50J5/3V78G9GK7jIyJE2kqn5xFOdCxpMu8 rQO9e6pbWSnLWVsnxTtmnIKSex9PZ6QNIHkcO BkGCIsuAEBgZkJsHirSrYiWUG833ShBVLJSOSY5T13JtwMdMTcy CC90lifvc 0BoSdOoJBcKnQxVBd0HM=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=3 a M4ZGrSmD9GNHYtJIA336dMS YRv4LXk2rsHlm Q=&c=WrgYb7Gk8bhKZwFJsH62uE9gRBv3R2IIjVm5PlbVluWuVvNPR7YGo6jovk9xEw 4YOGDo0M9q1JdW Bdi8gV1yjOowlfSny/a5digd6WsQjS961rfN2C2C85G8rnDkvpUcB w28wOE2JpMIgqLJ9yAIWmyauo8O30S2NZcuUmBc=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=AtGoIsZAoKFjfgCyuHl9h1Mr DOHSORo5kMdEBVGiEs=&c=X3Eh5IlBErrczoADQIgg7VZF jlPrfLlKyLQsH8nKXin9P9Qf45E0399N4JQvGySz35H7bwCGr5vBB07WyS6j6XXJCpnE8EUsbXvPTXse6aBDxly5kMZ4K8ghbOsCw k2/IcrNqB5eRSH3cewJvi N170bGOus8gKW7kc7hNdgw=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=zS1Vw I9rVmVJApz8ylvKtyW5eEpMiSKTCb01qud2j8=&c=vaFiOzP ao2akWmBX1PYKzUyDuXoVdN4ti5jjlK9rstljUsWnVdT2Dj/OHnw58c913U/eSBjNgdqk6b6gu45YRgJ5WaUTLK5YnrkS3n9f2LRibEmXSx sVfoJODUjlcI3WEYHQiY25A1oyQDeE7byTVU4TOpNmlgt962fYCQRoTR5eFaBLvwZSqScC9GfCBU&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=PZOwjhzU zDXonfu nOghD7VyCQm8CpQUHy3E/yxyao=&c=qZCcjSDld/vrLKjS79E 5Jr9s eQadVJQOd3p3xCxJv2hSEO5njQOOKBl6uvZbgmLhhFlfPMgH/InVp4jf7mWBOskYBFC5zz2XV foNmCbJ4ZgREB/gk1mn1N4CdzgpATqHYxbjlOXfyftL rliDdIn3 Tg5WeOuqotNkfJd5D8=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=Jlm6mfSeMk1f8nQShhUwNNjAEMq/zleupNw1eVYEhA0=&c=P9M31BLPzOmz7 Imx eIoeceD1wVkfP29W8bwdlbCoLGBruW/PRNuUwA6QA5dK PUCRgHauS2Y86MjUs2KCHPXCLSqzPOYH6qoxCpquOoCIrkpTUd6OWskZFR93vkDO08QccoEbbZTZ7hPmZopJQcfemGSoU ZMYNT4VNT4CKio=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=op3NkUqDa7SjsX8Y4JIzLZ8mxrBkYSMgdXRAbeo/5KQ=&c=c3TGvFIkiVpTBWrJ9TQd44Xjta9kl330UOTaC61frpHJDRr 7iSkltLbA PUfa6SxFYHaqq58YIqY qugQ zbvMtbjhA/OJhmEJFwSyviSGG4Icwv7R3thQDuYXe89Z/UETSOcQrgUcAJLnaXd6QqU2TidRvJoYNZKT t17kx08=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=EEd6UApySqFl5NQgjveO4YOkty uzB1pDEl g2G2iKE=&c=uqRjv5D4rJUfiiTjF47hc6Hegi6hI5DajnErKEuvJeW1MnETvi9kEN5qAgCB6PGQNWNG5e8qEtuZ3lHY7o2l2Ozatc7Lml6jXL9/hR04vZE42gweGanB3/WtqEekQrUkNKdor i2VMZfZNFLtCwJIQ RfLFJNM4cagSC6XZUjGE=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=ro2Ar84k9FDzLL44EWP0ipPkTX5glWgG7kLXK43IoVQ=&c=QkK3MuWHc8WNB1CsGHzFXimb9cElSQDMVF07oC2 CqG8MaTYeHNg2t cLM7cQPKFaAtNZxvUZFVgXoABIvbNs5024pqJ EJ3Tfhz9azYcUabu4icmE/wfB1aePLXHr1Fa1/n8x7diJ/jtRh/ZY2GQ1K3tYn QeESffnr3l4 cHk=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=agt7wqqJVerv/rE28qDzbhoMAwt9UxC884PXMYgPXYg=&c=f940yKnlQgjVt0BmipagogQLkkLo6JkI1Sa e6SGNpUmMU0gfuYzSBMyqBh71ix043ib8BVjgD 1uL90gDJWw0YZ/BzsWF3iIZ24t/94kDaas1Rv3xEfFxy/m0D9q/1YXRs/p0ihLNfZSdFxbwEht1tzPoZsWKeCIp53rs5qra4=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.guardfilespreset.com/c?x=8ugOpTa3LkZXhGiimIjSjnUsdjTyB6aV6DX7hERcp2E=&c=z5l82Yj wCOer4n6QmG51SckoBp782cl9Fz3svkWyrQzlnMrA1R8MaF5sAgLfiZT CZSSYEfGMFNWypt6 oUDDRV84ZWREI1YzVOSojPwl9O f X06OqTTB1gfgXesBJWeDYay7Kfc5g25kB9f1gdzf9kIh7uzgoYE5GOfp5NZmRIF2gbO9Sr4Cs7vSgCGwT&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=iwLWhKq10M3HIuaxQJYw1a0FunYgT6kapOzd 3TGMY0=&c=CmgFcTidOluavsObysu JMA 2lEpauZBHIYe/cO0SYgyFUybXUZs4eeDEjgfCOMsR4pBOWPGyleAf8pky6Yozw8bKGhu7F2UivjLWQZJT2TGrvVs t0G 2q5RwIxp4yDiZJDyOKG/PJV5Jy8cq59/hOZ hmRT3HmK24QnxYmR4=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=P Kt3EGladfUH93Az/nv67fFhXNm53f5lpAHfR1GOTw=&c=khNZotXwfMayOzL40mGP/Q9 MZn9Q7Y8gCIACQuT0EiHA6omqAJ3bRuOGc0ysPwcuMg6wT 5oKOjcQw8BKfSFu8ZbPVJ8G7u6wH015WNDLQE8P9532IhqvrfcWgGENJhLOlwkUdEI7CAe/XDq9fslWm71eYD5yYvpt UJMQQk8KJgmelh qLA4ztqJL2S0/C&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=MSnKvn2ADfO4M2eBRNE2O6xa8GbJ1oIhz8KY8EeKYE0=&c=NnoR0loUT6NWgV/cwAAiRthAiftnH9xKSDiu5KEJEHduZ87fEyqJW7hl0rHb300X74xqUb6jY3QwYwzR/sGE9FdnCPmGdlTzO7rwxashqOuYUNTatybF NscQtJH8f5Y0G7 EfDCNN n1DYH8HQWq bIEnMJUeAmDWepNA4OCrutK0roBrq9WnxTB4XU783Z&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=YOSDckbUr8SlJjfxtq gtx7CnfhNc68Oae2VYWqF1/U=&c=Q6kASyfWKJYydstn9an4gHE2nBn0Wvvbymi6ZS95 el6NhCXIq8KI1VIiUVNLJId6c/fYK/L48XS1kOPaCMyZ0fIPolcv3Fac6PZpY1D4jwgleUYHAmgwWtTh1BbWU4rf72IHDSrKhYwhIRUo2ZWU 74nOqY4NW2zsWi ugyVU=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=8QJkuPTM7Y78ChkLBpWumiH2 hIPMXgS1uRhlGV992w=&c=BsKW8mhmNTQ3HP8kIZZBBXlcwh8KiFO4lnUxVIy/bPhhHjzmvxSBbxHRMI vSrBUFtO9waIl4HyXR006c4g0HHKyN/iUD/i33GufHy1vLekAsPbwmOGX36oCrc7jEx/ZJT9NZuEusCBL/gVwdruvKovVvh41b9i /LLsTgR5OEY=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.2016delivery34.com/c?x=AP1vvNarqvzWb8rraOq Qlf2tnNo/giIIC3DW/O1/pg=&c=bIditY5X/E YZt8xaaV049s2pLE6Cr oplMOARC5LqzaqsreQNwVxvsY6wQKsRpp0AJtRGF3zdm0YX2vY2np3EbjymykMBMRS9OzatLuO8EIMWUrEpl5rZox8j/bjZ1ybhF2eznb/AS9kASZYRiVOmD98VE/OFKqZ3NY5tOmaN32VZkR62WdlRJcwtxam33Q&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=ej6QUUwTd8QB/8Q6vBLUTdIVtE0 rfb1Gy9Hta0iCWQ=&c=4AAb4FUcGHhwDNdAopuW9tZu1GFrnozOKg /6RgiO Lz/KBDjhSxg86sVgpWv2u0CYjDmlTuXoBnySV1ldfZ00ov7dCZev3L5L6L5jX5T799XRwnXmMdBf1T0J9rkHrzxtSZhF6TthNuU7VzatYWqqeESnT in/JyPp1QmMbGJk=&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

http://www.downloadstowersguard.com/c?x=804NiO/aaXDpUS7TL/aGvsfxqWl902K5Wm6P0cEvJAQ=&c=K7p1 mw7L6ExPYhjU9pZ4xDrWnxP4 FzrXL2Mc3BOB4HRN1Xf62MU5FOLtzWHePVrSdksAt 79QzAgSkkBHV37kQauzlbhdQHIODPynBgEo1X5Hk2xtu eTInHqVCNZQaN4zs3lGvIe2OKLNqcP0uKY1l9bzzurn5vd/r4k 9ZGiPMJECr432X2m3r2t46eg&downloadAs=Stremio_Setup.exe&fallback_url=http://.../Stremio 3.5.10.exe

Latest 30 of 193 download URLs

Remove stremio_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.