wdksetup.exe

Windows Driver Kit for Windows 8.1

Microsoft Corporation

This is the uninstaller utility registered in the Windows Control Panel for the program Windows Driver Kit for Windows 8.1 by Microsoft Corporation. The file has been seen being downloaded from go.redirectingat.com and multiple other hosts.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Windows Driver Kit for Windows 8.1

Version:
8.100.26846

MD5:
9fdc175b4f914251ee305119fb14471c

SHA-1:
3daf03810ea923a67c93ec8b4a13b4dc4fda442a

SHA-256:
99d0f76456e24f8c7baa643291267ab7c89dfce05b28c3571cd3c36cdf66f17b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/24/2024 5:19:21 AM UTC  (today)

File size:
968.7 KB (991,968 bytes)

Product version:
8.100.26846

Copyright:
Copyright (c) Microsoft Corporation. All rights reserved.

Original file name:
wdksetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\wdksetup.exe

Digital Signature
Authority:
Microsoft Corporation

Valid from:
4/22/2014 12:39:00 PM

Valid to:
7/22/2015 12:39:00 PM

Subject:
CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
33000000CA6CD5321235C4E1550001000000CA

File PE Metadata
Compilation timestamp:
7/15/2014 7:36:04 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:YrWYvZNwFcD2kYPIv+KiqiTJLiBAbpIChYEvKPAcOhE0Nlfk6g7w+qxukHb:YzB12kYPIvKqQxi6phhYhoBNFBgc+qxz

Entry address:
0x469B

Entry point:
E8, AC, 14, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 8B, 00, 81, 38, 63, 73, 6D, E0, 75, 2A, 83, 78, 10, 03, 75, 24, 8B, 40, 14, 3D, 20, 05, 93, 19, 74, 15, 3D, 21, 05, 93, 19, 74, 0E, 3D, 22, 05, 93, 19, 74, 07, 3D, 00, 40, 99, 01, 75, 05, E8, 01, 15, 00, 00, 33, C0, 5D, C2, 04, 00, 68, A5, 46, 40, 00, FF, 15, 98, 11, 40, 00, 33, C0, C3, 8B, FF, 55, 8B, EC, 57, BF, E8, 03, 00, 00, 57, FF, 15, A0, 11, 40, 00, FF, 75, 08, FF, 15, 9C, 11, 40, 00, 81, C7, E8, 03, 00, 00, 81, FF, 60, EA, 00...
 
[+]

Entropy:
6.8343

Code size:
303.5 KB (310,784 bytes)

Program Uninstaller
Program name:
Windows Driver Kit for Windows 8.1

Display publisher:
Microsoft Corporation

Display version:
8.100.26846

Uninstall string:
"C:\ProgramData\Package Cache\{aba88724-37eb-4f03-b83b-45199c5a7cf5}\wdksetup.exe" /uninstall


The file wdksetup.exe has been seen being distributed by the following 27 URLs.

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=4e41c213c46c410c03854dca011a9309&xuuid=145fd6cbd2d4ca2ff432d11b7ec86377&xsessid=1f1f927c3e937c64185f25324edfd6fd&xcreo=0&xed=0&sref=http://.../how-fix-windows-10-high-memory-usage-issue-1514199&pref=http://.../how-fix-windows-10-high-memory-usage-issue-1514199&xtz=0&abp=1

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=73b285abda6e505677f91d30a691eea8&xuuid=11b947f14fdfe0dad6110a4fca1c2826&xsessid=9ec5db0307c3f72d1f8b4e8d536e6229&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=300

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=4b495f20ffb52ecd8e995ed429a33193&xuuid=3ba4d48530761d4b7f0a6ea22f2d8848&xsessid=8ba9da0a5dc9cc0fb69bea7487c17f61&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=240

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=6f5bc100be16204a87dbbd3be4918fc5&xuuid=5c5b5d15dfddd9938e5973cb576eb9a8&xsessid=007b2fd640520445e1169b7c497688e6&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=-570

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=d4272eb426182def6ec0146506534a7c&xuuid=45102b2b617a4a4ccf79506edc58d3f0&xsessid=325e3d6da97acf4b45b30c81841baff0&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=-60&abp=1

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=50f3a526813b4ba48a515cc901fa6571&xuuid=f9447582d76a2ff351f884ecea5f2247&xsessid=dc5fd74d7ace033be415762c5ecd2b0c&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=0

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=17d89a3da22cfe324bf9afcf83b19607&xuuid=fb60002f8758144197cbc728b130b6d4&xsessid=31031fcdc1c999e90798f8773edc604b&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=300&abp=1

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=20a6b7b93af42a84ca106121421568e6&xuuid=a777809c191a088e87ecf1c212c0d103&xsessid=7fd8781c6b36d5ab2e6363fb2acb52b9&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://www.reddit.com/r/techsupport/comments/3hrd4u/.../&xtz=-60

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=de9f5248b5b36357ff32819e18b184aa&xuuid=c6555d760a229688f5b6a3324d27d4c2&xsessid=d5cb847f848b6366af1bc1421f6bd7fc&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=300&abp=1

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=9c3e3586dd7f4a430a4c1a4cacce56f4&xuuid=d4b1b61e6ef7d5868b796ddb95257268&xsessid=610f707863a6e4e85dcd73ed132820ed&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=420&abp=1

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=6d451c40e17866adc877361bfb499a61&xuuid=95928a6dc71e676a5315088ae659c5b1&xsessid=0e500b0cc23e81d6164c0575bc4247df&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=240&abp=1

http://go.redirectingat.com/?id=86151X1538609&site=ibt.co.uk&xs=1&isjs=1&url=http://go.microsoft.com/fwlink/p/?LinkId=317353&xguid=8c876d426914c6662bdc294a46e266bd&xuuid=63086680015fa4468ab2d8ced6559521&xsessid=09a31cf91b0ad31c9b0df6b19d1b7f7a&xcreo=0&xed=0&sref=http://www.ibtimes.co.uk/how-fix-windows-10-high-memory-usage-issue-1514199&pref=https://.../&xtz=-60

temp:wdksetup.exe