How to remove setup64.exe

» File
File Details
Overview
Analysis

setup64.exe

The module setup64.exe has been detected as Adware.OpenCandy

Remove setup64.exe

File Details

Main Info:

Product Name:	Recover Keys
Company Name:	Recover Keys
MD5:	cbb83fade3fb8066966e3c75079815fb
Size:	7 MB
First Published:	2018-07-27 09:08:49 (6 years ago)
Latest Published:	2024-10-16 23:01:08 (2 months ago)

Analysis:

Status:	Adware.OpenCandy (on last analysis)
Analysis Date:	2024-10-16 23:01:08 (2 months ago)

Overview

Digital Signature

Signed By:	ONE UP LTD.
Status:	Valid

Common Places:

%profile%\downloads\rk.9.0.3.168_2b

%profile%\pictures

%profile%\downloads\grabit downloads\nuclear coffee recover keys 9_0_3_168 enterprise _ cmd _ usb version multilingual\e4y94y9454y9454497445975u7

%sysdrive%\descargas torrent\nuclear coffee recover keys enterprise 9.0.3.168 + portable

%sysdrive%\yedekler\isletim sistemleri\windows 10\windows key bulucular\nuclear coffee recover keys v9.0.3.168 enterprise and usb version + crack - softasm.com.rar\nuclear coffee recover keys v9.0.3.168 enterprise and usb version + crack - softasm.com

%profile%

%sysdrive%\05 程序\1 to be test\nuclear coffee recover keys v9.0.3.168 enterprise and usb version + crack - softasm.com.rar\nuclear coffee recover keys v9.0.3.168 enterprise and usb version + crack - softasm.com

%sysdrive%\1 новый комп\инет\nuclear coffee recover keys enterprise 9.0.3.168 + portable

%profile%\downloads

%sysdrive%\cloud mail.ru\# destek\# format program\#- lisanslı program keyleri gör\recovery keys 9.0.3 -intifada1453.rar\recover keys 9

File Names:

RecoverKeysrEnterprise-x64.exe

setup64.exe

Nuclear Coffee Recover Keys Enterprise 9.0.3.168 x64.exe

Geography:

	27.3%
	18.2%
	9.1%
	9.1%
	9.1%
	9.1%
	9.1%
	9.1%

OS Version:

Windows 10	81.8%
Windows 7	18.2%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000113bc

PE Sections:

Name	Size of data	MD5
.text	61952	3a126e478661f20816f9d9285615f98e
.itext	3072	ba48b9b17b3dd8b92da3bd93f20ddb34
.data	3584	d7fd5f4b562d7961758f3d6a8c834fd0
.bss	0	00000000000000000000000000000000
.idata	3584	93d91a2b90e60bd758fc0c4908856ae1
.tls	0	00000000000000000000000000000000
.rdata	512	3dffc444ccc131c9dcee18db49ee6403
.rsrc	328704	0b97e9cc3a1174bdf3df2561559a33a8

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for setup64.exe

copyright for information about setup64.exe