Upload files

By using Saferwall you consent to our Terms of Service and Privacy Policy and allow us to share your submission with the security community. Learn more

Summary
Like

Analyse score

8/ 14

8 antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

exe

exe

Basic properties

CRC32

0xde9b0399

MD5

26dae19f391a84fa6ee3e75962750f04

Magic

PE32+ executable (GUI) x86-64, for MS Windows

SHA1

ab6dece57145eb46b9dd1fbc38b60c87bd59e1e0

SHA256

0a8a9b1bb43b92c2a915ab9f2be52ec1a1f5ef9a1525bcda95df8f3108e0b92a

SHA512

f0ecf2af2bc83b4b92b42af6e494378137e36f2d70ee52f132d059506a00e69e6a10164d7288ad71a0fa27eca870adf0acf076b35ac26a1debc8400b204180b6

SSDeep

12288:BoMJcNHs9gBoh7b43iClOz21dnrO+12N3zAUaA:PAol4xW2jnrSN3zAfA

Size

810.85KB

TLSH

b405f69577a447b5f0b28a348925826da6727850dd33ce0f10914eeefff39918e25b32

Packer
  • PE+(64): linker: Microsoft Linker(14.0, Visual Studio 2015 14.0*)[EXE64]
TrID
  • 72.7% (.CPL) Windows Control Panel Item (generic) (57583/11/19)
  • 13.2% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 6.3% (.EXE) Win16 NE executable (generic) (5038/12/1)
  • 2.5% (.EXE) OS/2 Executable (generic) (2029/13)
  • 2.5% (.EXE) Generic Win/DOS Executable (2002/3)
Tags

ExifTool File Metadata

CharacterSet

Windows, Latin1

CodeSize

310.50KB

CompanyName

Microsoft Corporation

EntryPoint

0xb1ac

ExifToolVersionNumber

12.76

FileDescription

Microsoft Setup Bootstrapper

FileFlags

Pre-release, Special build

FileFlagsMask

0x003f

FileOs

Windows NT 32-bit

FileSize

830 kB

FileSubtype

0

FileType

Win64 EXE

FileTypeExtension

exe

FileVersion

16.0.4266.1001

FileVersionNumber

16.0.4266.1001

ImageFileCharacteristics

Executable, Large address aware, Removable run from swap, Net run from swap

ImageVersion

0.0

InitializedDataSize

448.00KB

InternalName

setup.exe

LanguageCode

Neutral

LegalTrademarks1

Microsoft® is a registered trademark of Microsoft Corporation.

LegalTrademarks2

Windows® is a registered trademark of Microsoft Corporation.

LinkerVersion

14.0

MachineType

AMD AMD64

MimeType

application/octet-stream

MoseVersion

BETA

ObjectFileType

Executable application

OriginalFileName

setup.exe

OsVersion

6.1

PeType

PE32+

ProductName

Microsoft Setup Bootstrapper

ProductVersion

16.0.4266.1001

ProductVersionNumber

16.0.4266.0

Subsystem

Windows GUI

SubsystemVersion

6.1

UninitializedDataSize

0

Submissions

Published Name Source Country
0a8a9b1bb43b92c2a915ab9f2be52ec1a1f5ef9a1525bcda95df8f3108e0b92a web
N/A