home

repair_tool-setup.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from error.systemadvisor1.com.
MD5:
59ae099843670c8575ae3b0cf16c1360

SHA-1:
ed872162ab2cd78c29acef45d7eee004782e6568

SHA-256:
b9767ec3e27fa1f2fdceb31440613cf3da3a9815592f80998b53ab1264b9c685

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 2:54:26 AM UTC  (today)

File size:
5.8 MB (6,043,488 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\repair_tool-setup.exe

File PE Metadata
Compilation timestamp:
10/7/2014 11:05:58 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:UG7Eln155MF198MS5sEuu09bR0wwauBCqIP/NIMjTWBwF0jB62BaBtaU6:NWK4F5RuuGbZwyquIMjyBtjwUaBta7

Entry address:
0xC87EC

Entry point:
00, 00, 59, 83, 65, FC, 00, FF, 76, 68, FF, 15, 7C, 11, 50, 00, C7, 45, FC, FE, FF, FF, FF, E8, 3E, 00, 00, 00, 6A, 0C, E8, 13, 60, 00, 00, 59, 89, 7D, FC, 8B, 45, 0C, 89, 46, 6C, 85, C0, 75, 08, A1, 18, 11, 54, 00, 89, 46, 6C, FF, 76, 6C, E8, 1F, 0A, 00, 00, 59, C7, 45, FC, FE, FF, FF, FF, E8, 15, 00, 00, 00, E8, BA, 28, 00, 00, C3, 33, FF, 47, 8B, 75, 08, 6A, 0D, E8, FB, 5E, 00, 00, 59, C3, 6A, 0C, E8, F2, 5E, 00, 00, 59, C3, 8B, FF, 56, 57, FF, 15, 3C, 13, 50, 00, FF, 35, E0, 04, 54, 00, 8B, F8, E8, 91...
 
[+]

Entropy:
7.7511  (probably packed)

Code size:
1021.5 KB (1,046,016 bytes)

The file repair_tool-setup.exe has been seen being distributed by the following URL.

http://error.systemadvisor1.com/.../Repair_Tool-Setup.exe

Scan repair_tool-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.