How to remove Setup.exe
Setup.exe
The module Setup.exe has been detected as Hack.KMS
File Details
| Product Name: | Office 2013-2016 C2R Install |
| MD5: | 3e5b62bc1afa02d9312e00aa3c4aec01 |
| Size: | 11 MB |
| First Published: | 2017-06-20 18:04:07 (7 years ago) |
| Latest Published: | 2022-09-12 23:33:12 (2 years ago) |
| Status: | Hack.KMS (on last analysis) | |
| Analysis Date: | 2022-09-12 23:33:12 (2 years ago) |
Overview
| Signed By: | WZT |
| Status: | Valid |
Common Places:
| %sysdrive%\windows |
| %profile%\downloads\programs\office 2013-2016 c2r install v5.8.1 |
| %profile%\downloads\office_2013-2016_c2r_install_5.8.1.rar\philka.ru_office 2013-2016 c2r install 5.8.1 |
| %desktop%\office 2013-2016 c2r install v5.8.1 |
| %profile%\downloads\microsoft office 2016 proplus insider build 16.0.7827.1000[eng-ไทย]+visiopro[eng]+projectpro[eng] x86x64 (03feb2017)\en-th_office_2016_proplus_insider_16.0.7827.1000_x86x64_03feb2017 |
| %profile%\downloads\microsoft.office.2016.msdn.hebrew.full.incl.visio.project-hax\programs\office 2013-2016 c2r install v5.8.1 |
| %profile%\downloads\cm-microsoft office 2016 proplus insider build 16.0.8316.1000[eng-ไทย]+visiopro[eng]+projectpro[eng] x86x64 (24jun2017)\en-th_office_2016_proplus_insider_16.0.8316.1000_x86x64_24jun2017 |
| %sysdrive%\ดาวน์โหลด\microsoft office 2016 proplus insider build 16.0.8316.1000[eng-ไทย]+visiopro[eng]+projectpro[eng] x86x64 (24jun2017) |
| %desktop%\beloff\apps\!microsoft\kms |
| %windir% |
File Names:
| OInstall.exe |
| Setup.exe |
| oinstall.exe |
| setup.exe |
Geography:
| 39.8% | ||
| 12.7% | ||
| 6.8% | ||
| 4.2% | ||
| 4.2% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% |
OS Version:
| Windows 10 | 79.0% | |
| Windows 7 | 16.0% | |
| Windows 8.1 | 4.2% | |
| Windows XP | 0.8% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00001000 |
PE Sections:
| Name | Size of data | MD5 |
| .code | 127488 | 42bf90ec204555143b6179f7d6be5be7 |
| .text | 591360 | a84eb5102d90fa04eea458a86f6fcb0f |
| .rdata | 116736 | c1b579a3d9d970c625d3dda4205e7c7b |
| .data | 11018240 | 86ed431e812655dddc25beae8177fecb |
| .rsrc | 69632 | ab6c710a791f6c07ed4c1a1fbf7d4072 |
| .modplug | 0 | 00000000000000000000000000000000 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Setup.exe
