Microsoft Toolkit.exe

Microsoft Toolkit

This is a setup program which is used to install the application. The file has been seen being downloaded from files.polsri.ac.id and multiple other hosts.
Product:
Microsoft Toolkit

Version:
2.5.0.0

MD5:
7f8a3114659a0adaa572f0e9e4255bfc

SHA-1:
5671c239b85ec01c33c4eb155caa0dfa6c57e509

SHA-256:
c533e6e7e596045ac2897508800016250798bc0f663f06c697ab9744cf0fc0c9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 8:27:20 AM UTC  (today)

File size:
36.7 MB (38,431,744 bytes)

Product version:
2.5.0.0

Copyright:
CODYQX4

Original file name:
Microsoft Toolkit.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\vmwarednd\5943a0bd\microsoft toolkit.exe

File PE Metadata
Compilation timestamp:
1/30/2014 7:47:06 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
786432:73JFddccYjQuqcDdJI14seJObcWOv320ErkJzpVutE3tc8sT7Sk654:tqBQuDBFseJmcJoejsPS/4

Entry address:
0x244CE6A

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9883  (probably packed)

Code size:
36.3 MB (38,055,936 bytes)

The file Microsoft Toolkit.exe has been seen being distributed by the following 23 URLs.

http://files.polsri.ac.id/Software/Microsoft/Office/Office 2010/MOffice2010-x86-Feb2014/.../Microsoft Toolkit.exe

https://dl-web.dropbox.com/.../Microsoft Toolkit.exe

https://docs.google.com/uc?export=download&confirm=nFw2&id=0B7IVukcfMRhtSkpmakpxUlFBeUk

https://mega.nz/temporary/.../7Ip3TDoY

https://cld.pt/dl/download/9eaa5339-0e50-4d31-9f9f-79532e9f3618/Cenas/Microsoft.Office.Professional.Plus.2013.com.SP1.PT-PT.x86.x64.VL-WiNTeaM/WiNTeaM/.../Microsoft Toolkit.exe

http://dc780.4shared.com/download/.../Microsoft_Toolkit.exe

http://download1330.mediafire.com/he51c9fripeg/.../Microsoft Toolkit.exe

http://getwebb.org/d/HmpHUyUc/.../yPLUgf0M

https://docs.google.com/uc?export=download&confirm=mOYC&id=0B2uBhfS6vZWORlNNaUdBakxJLWs

Scan Microsoft Toolkit.exe - Powered by Reason Core Security