Setup.exe Stealer Gen Analysis

Stealer Gen
Updated on 2024-07-22 (1 month ago)
Checked by Online Virus Scanner
Online Virus Checkerv.1.0.182.174
DB Version:2024-07-22 23:00:28

Spy.Win32.Gen.tr

This is a generic detection name used to identify a potentially harmful or suspicious file or program that exhibits characteristics of a Trojan horse. It is malware that disguises itself as a legitimate or benign program but contains malicious code or functions.

FileSetup.exe
Checked2024-07-22 20:19:44
MD5bffa63c509f84956b20afbbf80d762ec
SHA1568ddb8cc2038e21da8cc42ea2f08fb73be1cf04
SHA256a18fb5ee523e9e8894fb9075b5fa0781f40140a6bf4605feb081c5de008b337c
SHA5127e2654578c505c82749bea45ab7eb886d64c12be24bd0a85075b84193163b35ce359a996e17d1d4759e7cb7a2e51698305d08139f7700182ad260313e416d268
Imphasha46ac714274c7f150eaa703de6d7fb57
File Size8356365 bytes

Spy.Win32.Gen.tr Removal

Spy.Win32.Gen.tr Removal

Gridinsoft has the capability to identify and eliminate Spy.Win32.Gen.tr without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

Portable Executable Info

6d345a2d18a737105b8a673c950463bb
4a039548c40df7f264a87301ff29c38d
b2a89c96a2cada72
Image Base:0x00400000
Entry Point:0x00404b62
Compilation:2024-06-26 19:41:05
Checksum:0x08329af6 (Actual: 0x007fbd68)
OS Version:4.0
PEiD:PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, Nullsoft Installer self-extracting archive
Sign:The expected hash does not match the digest in SpcInfo
Sections:7
Imports: ADVAPI32, COMCTL32, GDI32, KERNEL32, ole32, SHELL32, USER32,
Exports: 0
Resources:6

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x00009f9c 0x0000a000 1685f4ba59a2f12ea5d99555c5f54e2b 6.07
.data 0x0000b000 0x00000108 0x00000200 2a66f5a1fb5b210ddb2778ef7b8f06f7 1.54
.rdata 0x0000c000 0x00009b80 0x00009c00 1c58e9f1a36e878e04b6a354f00b0a72 6.84
.bss 0x00016000 0x00048360 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
.idata 0x0005f000 0x00001428 0x00001600 bdccc342d357c9c9d4097058e3be6eb7 5.18
.ndata 0x00061000 0x00040000 0x00000200 bf619eac0cdf3f68d496ea9344137e8b 0.00
.rsrc 0x000a1000 0x00000a78 0x00000c00 f09ba0c9fb4a0b6fa8710357dc08c7cd 4.26

Leave a comment*

Share your thoughts or insights about this file. Do you align with our conclusion?

*Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Please Wait...

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Learn more Download Now
Gridinsoft Anti-Malware