How to remove Setup.exe
Setup.exe
The module Setup.exe has been detected as Trojan.Gen
File Details
| Product Name: | Office 2013-2016 C2R Install |
| MD5: | 0248922e88fe6e45f11de1224766efbf |
| Size: | 12 MB |
| First Published: | 2017-07-27 14:27:41 (7 years ago) |
| Latest Published: | 2018-12-20 00:33:59 (6 years ago) |
| Status: | Trojan.Gen (on last analysis) | |
| Analysis Date: | 2018-12-20 00:33:59 (6 years ago) |
Overview
| Signed By: | WZTeam |
| Status: | Valid |
Common Places:
| %profile%\downloads\office.2016.pro_c2r_install_v5.9.4 |
| %profile%\downloads\compressed\office.2016.pro_c2r_install_v5.9.4 |
| %sysdrive%\kms\mso |
| %sysdrive%\downloads\microsoft activation toolkit collection pack april 2017 [cracksnow]\office 2013-2016 c2r install v5.9.4 |
| %sysdrive%\windows |
| %profile%\downloads\programs\office.2016.pro_c2r_install_v5.9.4 |
| %profile%\downloads\office.2013.pro_c2r_install_v5.9.4.rar\office.2013.pro_c2r_install_v5.9.4 |
| %desktop%\programas pc\office 2013-2016 c2r install v5.9.4 ingles\office.2013-2016.c2r.install.v5.9.4-ratiborus\office_2013-2016_c2r_install_v5.9.4_2017.zip |
| %desktop%\yazılım\microsoft aktivasyon paketi mayıs 2017\microsoft aktivasyon paketi - mayıs 2017\mayis2017aracpaketi\program\office 2013-2016 c2r install v5.9.4 |
| %desktop%\office.2016.pro_c2r_install_v5.9.4\office.2016.pro_c2r_install_v5.9.4 |
File Names:
| OInstall.exe |
| Setup.exe |
| $RTH3STN.exe |
Geography:
| 24.5% | ||
| 11.3% | ||
| 7.5% | ||
| 7.5% | ||
| 5.7% | ||
| 5.7% | ||
| 5.7% | ||
| 5.7% | ||
| 5.7% | ||
| 3.8% | ||
| 3.8% | ||
| 3.8% | ||
| 1.9% | ||
| 1.9% | ||
| 1.9% | ||
| 1.9% | ||
| 1.9% |
OS Version:
| Windows 10 | 58.5% | |
| Windows 7 | 34.0% | |
| Windows 8.1 | 7.5% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00001000 |
PE Sections:
| Name | Size of data | MD5 |
| .code | 130048 | b35dc03d62d167bc244d2212d9b7ef45 |
| .text | 593408 | f6896dd9a656125e319005e322a96bc3 |
| .rdata | 116224 | 86966b0a4ef4ad823c392674e9408bd0 |
| .data | 12456960 | c711a25f5141fe2a719d3feeb97c61ca |
| .rsrc | 84480 | a1b391b4f8e4546121b43d833cebdc4d |
| .modplug | 0 | 00000000000000000000000000000000 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Setup.exe
