setup_toolwizcare.exe

ToolWiz Care

XII CNC Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from cdn2.computeridee.nl.
Publisher:
ToolWiz  (signed by XII CNC Inc.)

Product:
ToolWiz Care

Version:
3.1.0.5500

MD5:
f77b42d0e7bd8fe03ba0c5c02b1fbe96

SHA-1:
9c6d5f4dde394c3b27e05823a36588e823170ee2

SHA-256:
8597106a96acc1384107f54435830f1e0b6b99f9c7ee3ae4bd0690f8e185e5de

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 4:42:58 PM UTC  (today)

File size:
7.2 MB (7,539,416 bytes)

Product version:
2.0

Copyright:
Copyright(c) 2013 by ToolWiz.com

Trademarks:
ToolWiz

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\setup_toolwizcare.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
9/10/2013 2:00:00 AM

Valid to:
11/10/2014 12:59:59 AM

Subject:
CN=XII CNC Inc., OU=R&D Team, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=XII CNC Inc., L=Anyang-si, S=Gyeonggi-do, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0EA8B60149BC1FE40C91216292149AA7

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:eImWjdfHpTwTWfauyYzksx2JZm8fthRxK9YoWE:eImId/Hz9onm83RxK5W

Entry address:
0xF9C001

Entry point:
60, E9, 3D, 04, 00, 00, 41, 8D, AD, A9, A9, 42, A9, 12, 99, 90, ED, A9, AA, 74, 82, 34, 79, 96, ED, A9, 2A, 14, 55, E0, ED, A9, A9, 20, 34, 55, E0, ED, A9, A6, 2C, CF, AA, A9, A9, 6E, 2C, 9A, 90, ED, A9, A9, A9, A9, A9, 24, 2C, AD, E3, ED, A9, F9, 56, 3C, A9, E2, ED, A9, 20, 2C, A9, E3, ED, A9, 22, 51, 24, 34, B8, E3, ED, A9, FA, F9, 56, 3C, 55, E3, ED, A9, 20, 2C, 55, 96, ED, A9, 24, 34, B7, E3, ED, A9, FA, FE, 56, 3C, 55, E3, ED, A9, 20, 2C, A9, E9, ED, A9, 24, 2C, 1C, 90, ED, A9, 56, 49, FD, C0, BC, A9...
 
[+]

Packer / compiler:
ASPack v2.11

Code size:
1.3 MB (1,400,320 bytes)

The file setup_toolwizcare.exe has been seen being distributed by the following URL.

Scan setup_toolwizcare.exe - Powered by Reason Core Security