tsasetup.exe

File Type Assistant

Trusted Software ApS

The application tsasetup.exe by Trusted Software ApS has been detected as adware by 7 anti-malware scanners. The program is a setup application that uses the BundleInstaller installer. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time. Additionally, the file is typically installed by a number of programs including Final Video Downloader 2013 by Bitberry Software and File Type Assistant by Trusted Software, both potentially unwanted software. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions.
Publisher:
Trusted Software ApS  (signed and verified)

Product:
File Type Assistant

Version:
2013.4.8.0

MD5:
cec66e3ca216a4783c6fc54b4fe36dbd

SHA-1:
ab9a1e20050206a9e4ea3fb7b3c3b9368a8229af

SHA-256:
6428dc4480d7a37e71a147736033090164f80ff083fd9f970410d9911b338f22

Scanner detections:
7 / 68

Status:
Adware

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Description:
This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:
11/16/2024 1:36:09 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
7.11.94.138

AVG
InstallCore
2015.0.3389

Boost by Reason
Adware.Task.TrustedSoftware.I
2013.7.23.1

ESET NOD32
Win32/FileTypeAssistant (variant)
8.9665

F-Prot
W32/Backdoor2.HTOA
v6.4.7.1.166

Reason Heuristics
PUP.Task.TrustedSoftware.I
14.8.8.1

Vba32 AntiVirus
Signed-Adware.InstallCore
3.12.24.3

File size:
1.4 MB (1,492,080 bytes)

Product version:
2013.4.8.0

Copyright:
Copyright © 2010-2013 Trusted Software

File type:
Executable application (Win32 EXE)

Bundler/Installer:
BundleInstaller (using Inno Setup)

Language:
Language Neutral

Common path:
C:\Program Files\file type assistant\tsasetup.exe

Digital Signature
Authority:
The USERTRUST Network

Valid from:
11/11/2010 4:00:00 PM

Valid to:
11/11/2013 3:59:59 PM

Subject:
CN=Trusted Software ApS, O=Trusted Software ApS, STREET=Blomsterhaven 42, L=Holbaek, S=n/a, PostalCode=4300, C=DK

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
1DA7007608C324C640CE3FBCC9418735

File PE Metadata
Compilation timestamp:
6/19/1992 3:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:/naek8Ddi4FWX5+04h5fV+HPG3yXxfk4PZPN4IauN9PWeKxCTr9Jm+VKnmoMevBZ:/azki4FWX4089YX9xZPOuN9ObqrS3moH

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Entropy:
7.9901

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

Scheduled Task
Task name:
ProgramRefresh-ATFST

Trigger:
Daily (Runs daily at 9:28 PM)


The file tsasetup.exe has been discovered within the following programs.

File Type Assistant  by Trusted Software
File Type Assistant is typically bundled by various 3rd party software through modified installers of generally free open source software using the InstallIQ downloader.
www.trustedsoftware.com/utility-software/free-file-viewer.html
74% remove it
Final Video Downloader 2013  by Bitberry Software
Publisher's description - “The downloader is extremely simple to use. It integrates with your web browser, so you just have to display the video page in your browser and click the Final Video Downloader icon.”
www.finalvideodownloader.com
About 75% of users remove it
Final Video Downloader 2015  by Bitberry Software
About 6% of users remove it
 
Powered by Should I Remove It?

The file tsasetup.exe has been seen being distributed by the following 4 URLs.

Remove tsasetup.exe - Powered by Reason Core Security