Gridinsoft Logo
File Icon

The setup.exe File Analysis

Updated 0 second ago
Checked by Malware Check
setup.exe

Technical Analysis

File Name setup.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.218.174
Database Version 2025-06-19 11:00:31 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
563,712
File Size (bytes)
2025-06-19
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
a852f5b70d0cdcd4c857a75b5e48535b
SHA1
0dd15825dca8afd02ec8b7ef583a83796fc833d8
SHA256
7845d095bef78a90e7dae6f6825074760b77aa171cc8b5dbe5bbf0deee86c9ce
SHA512
68d84d5d79e8d6f62b938244e4733352612c9590ba1fa817c322479c84dc7383421e494d81749d282a5d4073a429437bd7bfc2e6c127c33ff9243497567bf93c
ImpHash
4bbd4adfc99174f1d7d82430fab6116e

PE Analysis

Basic Information

Icon
Hash: dbdd6eaba195bca14300979d9a647ef0
Fuzzy: c5977609debe99c8f0f031f0a62182df
dHash: cc8c396b2963cecc
Image Base 0x00400000
Entry Point 0x00437d3e
Compilation Time 2021-04-06 20:31:00
Checksum 0x00088927 (Actual: 0x0008e656)
OS Version 5.1
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
PDB Path Q:\cmd\8\out\binaries\x86ret\bin\i386\Bootstrapper\Engine\setup.pdb
Digital Signature No valid SignedData structure was found.
Imports 9 libraries
KERNEL32, GDI32, ole32, Secur32, SHELL32, USER32, CRYPT32, WININET, msi
Exports 2 functions
Resources 123 Resources
Sections 5 Sections

Version Information

CompanyName
FileDescription Setup
FileVersion 16.0.31206.173 built by: D16.10
InternalName setup.exe
LegalCopyright © Microsoft Corporation. All rights reserved.
OriginalFilename setup.exe
ProductName
ProductVersion 16.0.31206.173
Translation 0x0409 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 383,416 bytes 383,488 bytes 6.43 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ A65DA09FBC01DA82453798B2DE740E64
.data 0x0005f000 9,684 bytes 5,120 bytes 3.37 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE F812EBCA07929464EF7C520D8AF67AAF
.idata 0x00062000 5,422 bytes 5,632 bytes 5.46 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ E6D9B1244D6F70B29550A812899FDAD6
.rsrc 0x00064000 152,976 bytes 153,088 bytes 4.83 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 4E49F62071C209D2064C7F281931C538
.reloc 0x0008a000 15,116 bytes 15,360 bytes 6.61 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 9D37F7FA4B6826B79BD78296DB582CDF
Entropy Analysis Alert

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 123 (145,677 bytes)
Resource Type Count Total Size Percentage
RT_ICON 18 98,143 bytes
67.4%
RT_DIALOG 3 1,000 bytes
0.7%
RT_GROUP_ICON 2 264 bytes
0.2%
RT_VERSION 1 740 bytes
0.5%
RT_MANIFEST 1 1,378 bytes
0.9%
None 98 44,152 bytes
30.3%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware