drivertoolkitinstaller.exe

DriverToolkit

Megaify Software

The application drivertoolkitinstaller.exe, “DriverToolkit Setup ” has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from www.driverscape.com.
Publisher:
Megaify Software

Product:
DriverToolkit

Description:
DriverToolkit Setup

Version:
8.5

MD5:
5dc1992444f1b2bd4204ad5a72c056bf

SHA-1:
18db5027077a4298a131361e979be473c54cd3af

SHA-256:
b18e0cc321ea7b2c7654ff08d39229baf7176dc5f1f7e968b1796cdac7046c0c

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 5:20:50 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Megaify.DriverToolkit (L)
16.8.10.15

File size:
2.4 MB (2,523,104 bytes)

Product version:
8.5.0.0

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\drivertoolkitinstaller.exe

File PE Metadata
Compilation timestamp:
10/13/2013 5:19:32 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:FfLTg3LcSpYqQLyUf42fy6A4OeOqdAIjtYKmbaS/0GfVfcDi9r:JsLcSpd8yEzvPlK1JODiN

Entry address:
0x113BC

Entry point:
86, CB, 0F, BF, F1, 0D, B1, 86, B5, 5A, FF, C6, F6, C4, D6, 57, 68, EA, BF, A4, 00, 8A, F6, 8D, 1D, 1C, 3D, 0D, 68, BB, 4C, 56, AB, 54, 81, C6, 10, B3, AD, 3A, 0F, B7, CD, 47, 86, EF, E8, 2D, 00, 00, 00, 86, FF, F3, BB, 03, B9, 5B, 8E, 80, CA, C9, 85, FA, EB, 02, 14, E3, 81, F6, 23, 56, 00, 00, 81, FD, 36, 7A, 00, 00, 76, 0E, 0C, 83, 69, D0, 57, C2, CB, 46, 8D, 15, BF, 87, 82, 58, 5E, 70, 0A, 12, D4, 8B, DB, 69, DD, 69, 80, FF, E7, 84, D0, 87, F8, F3, 87, C1, 8A, EB, 3B, D2, 0F, B7, EF, FF, CD, 09, D2, 8D...
 
[+]

Code size:
63.5 KB (65,024 bytes)

The file drivertoolkitinstaller.exe has been seen being distributed by the following URL.

Remove drivertoolkitinstaller.exe - Powered by Reason Core Security