PUABundler:Win32/MSetup (file analysis)

The PUABundler:Win32/MSetup is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What PUABundler:Win32/MSetup virus can do?

• Sample contains Overlay data
• Authenticode signature is invalid
• Anomalous binary characteristics

How to determine PUABundler:Win32/MSetup?

File Info:
name: 26FA6BAB7D462A0CEFC6.mlw
path: /opt/CAPEv2/storage/binaries/3fd071ef297bdd309359a25f615bf4aa1dd2aa1f3a8eca20ed4700e2fbe83763
crc32: 0694275C
md5: 26fa6bab7d462a0cefc61b5943b56c79
sha1: 543e1825c7ae759c44fc60f46c18c80370181316
sha256: 3fd071ef297bdd309359a25f615bf4aa1dd2aa1f3a8eca20ed4700e2fbe83763
sha512: 0adb6f598aded8c3e9e4627c0691e9d4e42610145585b156dde13b442eb640153a91db83b33d1ef41ae4b181546e6c833fe405fd2620d9f9d60c529f8e3a677d
ssdeep: 3072:x83/BziLFFRRPGi/QEuEuxQh/h0dIIJTOhAbKSckiZI4PQ6KiEyDb5:u2HRFGHrrhIEOoiO4PQ6hn5
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T195345B32547489BAD36212B0DE3C6F76E1BCDAA8537129C323D82D745272DCBD172A1B
sha3_384: 25cd19f6f58d71cc54860427409d902defba31e8780a3574ecad052fa6c13624c632c33c5fe34f06e90bdd6c6a386f05
ep_bytes: 
timestamp: 2023-09-21 08:15:00

Version Info:
0: [No Data]

PUABundler:Win32/MSetup also known as:

How to remove PUABundler:Win32/MSetup?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.