dxwebsetup.exe

DirectX 9.0 Web setup

Microsoft Corporation

This is a setup and installation application. The file has been seen being downloaded from eroge.tistory.com and multiple other hosts.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft® Windows® Operating System

Description:
DirectX 9.0 Web setup

Version:
9.29.1962.0

MD5:
fd6057b33e15a553ddc5d9873723ce8f

SHA-1:
f90efb623b5abea70af63c470daa8674444fb1df

SHA-256:
111aeddc6a6dbf64b28cb565aa12af9ee3cc0a56ce31e4da0068cf6b474c3288

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
12/25/2024 1:17:23 AM UTC  (today)

File size:
281.3 KB (288,088 bytes)

Product version:
9.29.1962.0

Copyright:
Copyright (c) Microsoft Corporation. All rights reserved.

Original file name:
dxwebsetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\dxwebsetup.exe

Digital Signature
Authority:
Microsoft Corporation

Valid from:
12/7/2009 8:40:29 PM

Valid to:
3/7/2011 7:40:29 PM

Subject:
CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
6101CF3E00000000000F

File PE Metadata
Compilation timestamp:
8/17/2001 10:42:57 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.0

CTPH (ssdeep):
6144:pWK8EGMUjp5cGQ3Mek1B3B9h8Ins3i8AEYBSawz1YSc:JGvjp5cj35kDB9hrs3zARBSaJSc

Entry address:
0x5A5E

Entry point:
55, 8B, EC, 83, EC, 44, 56, FF, 15, 5C, 11, 00, 01, 8B, F0, 8A, 06, 3C, 22, 75, 12, 46, 8A, 06, 84, C0, 74, 04, 3C, 22, 75, F5, 80, 3E, 22, 75, 13, EB, 10, 3C, 20, 7E, 0D, 46, 80, 3E, 20, 7F, FA, EB, 05, 3C, 20, 7F, 07, 46, 8A, 06, 84, C0, 75, F5, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 58, 11, 00, 01, F6, 45, E8, 01, 74, 06, 0F, B7, 45, EC, EB, 03, 6A, 0A, 58, 50, 56, 6A, 00, 6A, 00, FF, 15, 54, 11, 00, 01, 50, E8, 35, FF, FF, FF, 50, FF, 15, 04, 11, 00, 01, CC, 53, 8B, 5C, 24, 08, 3A, 5C, 24, 0C, 75, 1B...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
34 KB (34,816 bytes)

The file dxwebsetup.exe has been seen being distributed by the following 50 URLs.

http://eroge.tistory.com/.../cfile25.uf@1312E21B4C44180063508B.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1476307923&Signature=RRQBKXgnM7bujiN8~xUH80x~VDOjo4xqUeDZXdvWzSeNduPlrNyX49Oyfscan3M92q6tU2B7Dl01sxLaMHHw6zI7iLRIJdPmkx~h53IYkoSRu3-3sEYdd~Z1y2TXRmQuct4cMgd1tXnHvqF9X2bwu8GooQkqTcdqjZ5uGQmVzDE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://sd-cf.en.softonic.com/17000/17558/.../dxwebsetup.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1476183758&Signature=Gtj0hhBNvvDqTZxXC3FlNUe9s7LwKegj9e1eb0ltFTbzYhEJeHE81x01e1W88B1VAvd6v5YEIyfeWypAoGBeAQC8VtLedai~0Y5vLZEEEwM4EJQMZYYFE0xfWXewQLY4dl8xbeNRjNPattiVkqskxMS9U92poM~VlpgJ40FH0Qw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1469363984&Signature=ApQ2xpEM~R0GK60HPwWRizbriHmYsTMj~t3-xHH62gXTpIlsMFSovLCiV0cpt8yNn9jvfVNnQXJtBaixTR0ksWH7K8ehJVm7SXGUnB0kOseH2T7-gF74g-nS6scwHZslrBL6ZfrRcCGNTibwkbmTJfdjlzd230LVN6hVvZVFJYU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://www.giftvaultbinaries.com/E1Ja_34zMYuIEW2NFB1MqWJhITX6cNUmhBR6juGcLauMJlupsFmAMNUdnDPK4_44BKE xAS9qkd0I6RHUU_hCckqT6ebvKLqeXdAUGz8HxexnkjJ9u9cPiYCplvsUV5zp1of2WhywouRsmbNbudj1f6e44P5aJ7GHmQpnQvIPG0ciA2Fk2hA1_4RUwHrsqBp wTgXwT1m5CBNOce66wIAEBuNXvKvXFfzNpV8zGbm9r5assPg J77kRxqK1MZEsOw1WgqIeCUdD4AenNbftzCzGGaADwF9ijoLgBPVu1guekybKCFS8xVgUy7LbVm9gaIoB uBBpTcCDfD0fLUjWA64UqkVuhImihbLMKJl kk5IOyKryHVEKxFiyQCNRVxEsu0ug0S5lDgdOuG_q1qXg J89yCbl90w9k8FmAWnsIChLyLuHFLfe9XE5yFG1yuq440284nP-G0AAAMTOFhOy1DQ73L6_wjEOWO9a1nXRAWTwGOb5pAm9MUse_IdVZ0sUKEXMWkOxhvqFzaW38gg=

http://nl.inncdn.com/download.php?os=&icon=aHR0cDovL3NjcmVlbnNob3QuaXQuc2Z0Y2RuLm5ldC9pdC9zY3JuLzE3MDAwLzE3NTU4L2RpcmVjdHgtMS5qcGc=&desc=TGlicmVyaWUgaW5kaXNwZW5zYWJpbGkgcGVyIGkgY29tcG9uZW50aSBhdWRpbyBlIHZpZGVv&name=DirectX&domain=directx-9-c&ss=&lang=it_IT&url=aHR0cDovL2RpcmVjdHgtOS1jLnNvZnRvbmljLml0&version=0211142&ins=forumer&gclid=CIfHj8DZ3MECFVGWtAodt2AAZA

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1477267511&Signature=bM2mccpT6TnzLWuqaKoFnAb7xkY-eVTT8dAJmIKjK6ZdopHjLNNPe87MDmy6bpRsWe-6rSVBiL5serh~bVPTWIgSLPkfFv0MlL7uq8ZLQX2TrS5SO5n6mRbJsGlxLQtGoS166JLJ6MZN8Rh0~qJdSix3w-XqkXv-aoh2xDQGKVs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1436321302&Signature=YZXuFOxRWGr80JLxzg4z~NzDF8WxQU7DiNTOlWFo-MR4dhME5hSzK2VgZlN4X5WLl8jTRK3zw-dcuVkYtHRs4j~cPyoOVidxQZH9FoWtXda0m-AfRcuRtQPM17tbkUgZBC~wMQTNdf6lOEWUwHm77eQmdkiZVp9bBI0Cclg7fFQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1444518674&Signature=M8ZN11vTdpGIy1nDj3HDhrTxR5EtBPyfdGuDZw-0bVKv8Az1C6b4EvTkQbhgjeBSH840jS6zbNp1ZmdU0vUF~-UDxkvvCEw-tuUThAgO~wvSAs5zTDOMZ5yz5TyJkVIENp2rYECRffZVUEzTn5NTIkS7esWpfPhMeyBoLANZSUQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1481465184&Signature=b7JcrXv1leFhCie00OBo-suyum6hi43jGOP5SYkYj6oJsfAKVunK~FGLAkUJ5mjF7jh66X-mFxClsdiM1T8MVxWjiwGnQkcJ28p7odJW4xikebJth0OWyQqa9IjLaEqXR~9EOZ90TAOOdpRNrKMIgJ84f1D6s-Ok~POiApbU5YY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1477282699&Signature=LBhj2oUvz39Qu2dUeB-mYBQE8vIRiAysDCZ6Mun2hK8Qs-ROPSjzG-IdXgqcDBbnE9euM4rclH2KpLAlU0zFdsTTk48w~Altuf0levn4zaZbIg6qqY82RCUsgzMvnBb1PTkM5DtMEeGAHVDg0NfuQa4X3KJZrs1H-J56CKAvpMg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1468010246&Signature=J051bizFzk5-V~8ztMhuB6Du2PQhKb4HYCLJEUbTG8zaHqUGWtqTfg3Jy7JkRSN6YYnxwv96xdUIYkTdG3L9CzcDS7uTOTA-QbWzbfWt5p49qy4aFBlVaSPjY-2kkf5BGEvuyUfEmSnXJfmkTQpj19OpSF2BrmnbHVtAPpyKfBw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1482455223&Signature=YXSVTPappjOHrQGDUCCkn0vDFHb0G-4flMUp3p2fau3Wvn3V2-ExWocNN3RkOQLSSSl-CTk5YnG9CUw8GO14pq0OK0LqLoHOd-v7uIklFusuETeAodESnehSYP11Hamf0AsaG91-JIzXXedxvgdewj3-1Z38YnI0ZxWz5OtLeio_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1436914369&Signature=Y6teSvfzNc4MK7QjkMy8JAEOjAOxDbap6H0VXsK33xsRo3btn8sD9Bul2~DOi1uCIE-BgVLnn8jSsF6zeCGMjHfzjmHiicRC2t0m2u4HJbZswvRzhyUEHtYWUSC5b2q-ts-Qu7LIRxpuFdf9dvq5ZYPOiFTUUavtlGRE8gznFyk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

https://mega.nz/persistent/.../2YJGwS6R

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1479827710&Signature=cORovvu~p1qxF0~5n99a6i3o4mOauFd7Grx4P2XRsKWtlZzbPssOa8W1oJrOy-qlwEWjU2XMusikDd7ngoP1AdqyNeis7qHGe-fkl7xPKiYNVgLuatg4zlwVNhY2KQ7lj4QvxxUQScvUp3krbyLYi5ivL9qBjZxnEhHQqh~TyWo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

https://mega.nz/temporary/.../Hk5iyYKa

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1476587348&Signature=bjylvbAeMiplLc5PoX-5XXR~lg0m~pn9~MQp-NJq9Nly1gdXJeVsw1~840IiQi66BFSJm92xeX6sitQhsvcOS7aBbhuU3v3n~bhnEIa3gI1b9UnZPSqtJof4NLaw-RUn9-mVcTjlsFk~8rpmzhp2o-ouMGDdjdNq3vyvPKsp8i0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1471168761&Signature=FOPMZvrb8Bun8ngBair3t484nI6Mx3dycbP~0k2~NHfP74alMdv8aUHw1FYa12VEq6lrcn9wSgnt2UY3--E9~hmIgGm17TKtH7xiedttDGfDl-36blizVxOGeULZlgBJgdXZu5~VGn0CZHqAo6OplZVy~Ncr9XOJMrf3sYxHGYo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

https://mega.nz/temporary/.../2YJGwS6R

http://s6946.chomikuj.pl/File.aspx?e=37lQPOXAh6Z4GXn1yRaPSP2asIGOTrTmvE-ZyWh5j1s24PKuzXEz64vOVSFJMUPLwFEZUhu3hO5pl4buKceIrYvB5Zv551_33Buq2kWgerL25T5rzJis6ukkcsXxxONqeWpBUf_5Jt0GYRJwxOwipA&pv=2

http://www.giftvaultbinaries.com/CTTqO3iXcEDqHcqgt9g1Aoc71LtcHQMaZbuJdx4ssCmiVlRgs3GMFTVeVfYZHqDNIprjWI0Mt4cPcdpX1mb3ZZ0 Nl6Zc8c6hAZOcXHTMEK1lHuBRoHgQ2xbgMxYnpkZoqv0uiVeievIZ4iZXiyF4eZp5PXJqxPCiuiPRBfJPS1H4Xjg8hS6oONOHJ lqF0jG8u3GPwc8giUvkNYUiAyDHyXZ2ODxdZUivxUfIVWRHZpeLQhoWvv21fChap2o5LXwBqe1rw OFXdORzRnkYrrDBGMhUk0cO_dC1EDWgc8XHQ5NipZ_6NX22LQV2rqrCtmt9pQY_xzRlCpLS2Z7rHRLAhPTk4lXQdqwzMkVGXEOd_K1vV_CpFqx0je0aasSx h3DK6UtYQj5HjcnwLde4Kra9_j4PE74ukeTmB4 8XWFo_6xK8FXh4EAzZYl_CPoRUhrL Aih-G0AAAMTOFhOy1DQ73L6_wjEOWO9a1nXRAWTwGOb5pAm9MUse_IdVZ0sUKEXMWkOxhvqFzaW38gg=

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1476571414&Signature=ZPf8hlZEjn2FnUnVsBotEV0xMFL4aM5TIY6Mpojnxr9W6bXuVxLdgRxUN-~Lwcqg670rlPQZu0VgwgDT17~nfokAg8tg-mVbICT55NSrlmjwxito7tArDH5vZHaWp-feougM~HxP9KCEr5zoJYbaSDYTP7~R0ogVMONjTxBdXmo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://download43.mediafire.com/6nbpoi9bbfbg/.../dxwebsetup(2).exe

https://mega.nz/temporary/.../dc9TUBCD

https://drive.google.com/uc?id=0B25ufR9oqysmOEVMZWFlUC1UdEU&export=download

https://docviewer.yandex.ua/source?id=7goln-ahmc32lf944bwr1pvu376ll3f5ybl45sf7qaqu11vhrzkp38xdbmozf0xtxb06kdg824ioa9pta52kzl1jp5ijdopf2njudf9r3&archive-path=//dxwebsetup.exe&ts=1576a9846d0&token=Kgoq1DlqR8b7o2uC7SYq9Q==&name=???????).rar&uid=29943032

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1469650480&Signature=ft2jfAGMUgpIOtKuuUgJo5goX-HpaOzEyJ1oV-JH-7np-nTLzj5IHD4LXKzxV7MfvJ9pksCY0i9wIlkkTsllkkr~QODPmEv7kMt9LaeGYvNl760dRF1MP~2NyodlkVaK7H~-NbF6CGyep8eB8jxHQU1u7zq9frCq0mpWA7kuk~U_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

http://gsf-cf.softonic.com/f90/efb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=17558&instance=softonic_it&type=PROGRAM&Expires=1476853487&Signature=GqhOre6BdEplMnb2P-3wk9HZK1nSZ3snlbOFY0vyEtOajFYMR~cqsqLi4~kS0YNT8fDYpKwsrWtV04VmpkII6qvXS7rAI3giZ4i3Usr~aW6ZCerq0nIjwzXlHkJ~SNqAoTNEOFJ-cXcFjT~30M37A8twLa3593w972~gb88F7Fs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dxwebsetup-9.29.1962.exe

Latest 30 of 68 download URLs