home

directx_aug2009_redist.exe

Windows Internet Explorer

Microsoft Corporation

This is a setup program which is used to install the application. The file has been seen being downloaded from www.kestazenizdarma.cz and multiple other hosts.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Windows® Internet Explorer

Description:
Win32 Cabinet Self-Extractor

Version:
8.00.7100.0 (winmain_win7rc.090421-1700)

MD5:
3f615f38fdc5ee3a8f142dc6f7594657

SHA-1:
563b96a3d78d6038d10428f23954f083320b4019

SHA-256:
0594d52485f37fc11ad3bacf262a1052895d7f8cdd849b78c0f13c43f6cc2349

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/5/2024 6:48:06 PM UTC  (today)

File size:
103.3 MB (108,279,664 bytes)

Product version:
8.00.7100.0

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
WEXTRACT.EXE .MUI

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\fifa 2014\????? ??????? ?????? ?????? ?? ??? ????? ???????\dx9\directx_aug2009_redist.exe

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
10/23/2008 12:24:55 AM

Valid to:
1/22/2010 11:34:55 PM

Subject:
CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
61062781000000000008

File PE Metadata
Compilation timestamp:
4/22/2009 6:41:05 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3145728:A+eXNxgsqDgiUYZ5lLulVzMb6vPgdy2bBK:AdXNxHqUiTXuzMbePgdysBK

Entry address:
0x6AF8

Entry point:
E8, 1C, 06, 00, 00, E9, 4D, FD, FF, FF, CC, CC, CC, CC, CC, 3B, 0D, C4, C2, 00, 01, 75, 03, C2, 00, 00, E9, 98, 06, 00, 00, CC, CC, CC, CC, CC, FF, 25, 74, 12, 00, 01, CC, CC, CC, CC, CC, CC, FF, 25, 70, 12, 00, 01, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 04, 2B, C8, 1B, C0, F7, D0, 23, C8, 8B, C4, 25, 00, F0, FF, FF, 3B, C8, 72, 0A, 8B, C1, 59, 94, 8B, 00, 89, 04, 24, C3, 2D, 00, 10, 00, 00, 85, 00, EB, E9, CC, CC, CC, CC, CC, 53, 56, 57, 8B, 54, 24, 10, 8B...
 
[+]

Entropy:
7.9998  (probably packed)

Code size:
43 KB (44,032 bytes)

The file directx_aug2009_redist.exe has been seen being distributed by the following 50 URLs.

http://www.kestazenizdarma.cz/.../?programDetail-file_id=9&programDetail-program_id=6&programDetail-password=2cac0e6a7cc3038c3e3da05592cc2649&do=programDetail-Download

https://downloader.disk.yandex.ua/disk/4cb66f88ce8ed78edf8f7aa6ab13bef4551d241871e1dc6d6123d29274f04d12/58b2f58c/dmGL0BHukMACz6wgkHwhkWuggB3bEutxILn_C4YAVUUR1NwwD_o7AqpLKw-rTOqAmfyqiMRYm_vij1NW-4417Q==?uid=0&filename=DX 9.c.exe&disposition=attachment&hash=zhQ3aV4S6ARoYeT/SPYxOsgXCMfaMOl/.../x-msdownload&fsize=108279664&hid=3d71c393e1f1a06b74354aa0879f365f&media_type=executable&tknv=v2

http://files.instaluj.cz/dwl/0772c6c5a714b8b9d3daa823111ce900/hry/pomucky/direct-x/.../directx.exe

http://88.86.106.11/download/.../directx_aug2009_redist.exe

http://soubory.instaluj.cz/dwl/5dadc69c95a8d7c02c9978aa8f621f6f/hry/pomucky/direct-x/.../directx.exe

http://soubory.instaluj.cz/dwl/1d354c9263b766a8c5030a27ba6b688e/hry/pomucky/direct-x/.../directx.exe

http://soubory.instaluj.cz/dwl/0a1bb6045224022f3f849979c383f407/hry/pomucky/direct-x/.../directx.exe

http://soubory.instaluj.cz/dwl/e692b41c05ce2ed9248303644473cad5/hry/pomucky/direct-x/.../directx.exe

http://88.86.106.11/download/.../directx_aug2009_redist.exe

http://soubory.instaluj.cz/dwl/cc545b58d8e4ab6fdc0c15acb303b424/hry/pomucky/direct-x/.../directx.exe

http://files.instaluj.cz/dwl/685e68dc6f8a9cc788dd2575b80c7154/hry/pomucky/direct-x/.../directx.exe

http://88.86.106.11/download/.../directx_aug2009_redist.exe

http://soubory.instaluj.cz/dwl/cb73e180ca5b6b3e4db65d2ea54c107b/hry/pomucky/direct-x/.../directx.exe

http://soubory.instaluj.cz/dwl/e46b582f7657364da2fa01a4b2f2efc9/hry/pomucky/direct-x/.../directx.exe

http://88.86.106.11/download/.../directx_aug2009_redist.exe

http://www.kestazenizdarma.cz/.../?programDetail-file_id=9&programDetail-program_id=6&programDetail-password=7979302d766d1aec8f3697ef54906887&do=programDetail-Download

http://88.86.106.11/download/.../directx_aug2009_redist.exe

https://downloader.disk.yandex.ru/disk/1aaeb5586bbcbb83c55c0bf79d7c989fa0adedee08c3b5733f4b06cbda60604b/55d3b0a4/dmGL0BHukMACz6wgkHwhkWuggB3bEutxILn_C4YAVUUR1NwwD_o7AqpLKw-rTOqAmfyqiMRYm_vij1NW-4417Q==?uid=0&filename=DX 9.c.exe&disposition=attachment&hash=zhQ3aV4S6ARoYeT/SPYxOsgXCMfaMOl/.../x-msdownload&fsize=108279664&hid=3d71c393e1f1a06b74354aa0879f365f&media_type=executable&tknv=v2

http://88.86.106.11/download/.../directx_aug2009_redist.exe

http://soubory.instaluj.cz/dwl/32e5f1b82a49d176a3f44005c077c705/hry/pomucky/direct-x/.../directx.exe

http://soubory.instaluj.cz/dwl/b9cec61608594a7c6cf5fb337041cd16/hry/pomucky/direct-x/.../directx.exe

http://www.centrumxp.pl/.../6603,pobierz.aspx

http://www.kestazenizdarma.cz/.../?programDetail-file_id=9&programDetail-program_id=6&programDetail-password=bbdba257f96ea1bfa6e0aa829c59984c&do=programDetail-Download

http://soubory.instaluj.cz/dwl/58abfc5d49c6561baa658f852c6e83a6/hry/pomucky/direct-x/.../directx.exe

http://www.microsoft.com/downloads/info.aspx?na=90&p=&SrcDisplayLang=en&SrcCategoryId=&SrcFamilyId=04ac064b-00d1-474e-b7b1-442d8712d553&u=http://download.microsoft.com/download/B/7/9/.../directx_aug2009_redist.exe

http://downloads.zoznam.sk/.../directx-54?did=6114

http://soubory.instaluj.cz/dwl/0cd6337753fd6cc370e38a84c78263d5/hry/pomucky/direct-x/.../directx.exe

http://soubory.instaluj.cz/dwl/09fbb082b3eda19b5257c99eea1ccd10/hry/pomucky/direct-x/.../directx.exe

http://files.instaluj.cz/dwl/6b651e20b37f53c866ef8045a1be04f5/hry/pomucky/direct-x/.../directx.exe

http://files.instaluj.cz/dwl/ef8c7383344e497385606fb1b26c0441/hry/pomucky/direct-x/.../directx.exe

Latest 30 of 94 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.