windows8-setup.exe

Windows 8 Setup

Microsoft Corporation

This is a self-extracting archive and installer. The file has been seen being downloaded from informatiweb.digidip.net and multiple other hosts.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft® Windows® Operating System

Description:
Windows 8 Setup

Version:
6.2.9200.16384 (win8_rtm.120725-1247)

MD5:
c7e3c98f743330cd996027692fd6663b

SHA-1:
5abc267714ad149b2ddc0353a7881b64bb0550ab

SHA-256:
c710511a7f680f8eb89779bda75a1972ce75d73a4d43740f2501ab155eea2b50

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/24/2024 12:46:23 AM UTC  (today)

File size:
5.2 MB (5,442,160 bytes)

Product version:
6.2.9200.16384

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
WebSetup Self-Extractor

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\windows8-setup.exe

Digital Signature
Authority:
Microsoft Corporation

Valid from:
10/10/2011 4:32:25 PM

Valid to:
1/10/2013 3:32:25 PM

Subject:
CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
6119CC93000100000066

File PE Metadata
Compilation timestamp:
7/25/2012 9:02:48 PM

OS version:
6.2

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.10

CTPH (ssdeep):
98304:Ib5ukae4XqvsXh17jf+d9kkTE4AE+szZtQnB+cfAxPsSPc0oXmQ/xUBi9eyT0zfa:Iwkae7sx1fM9kkT/A6HsB+SAr00oXDZd

Entry address:
0x43B8B

Entry point:
E8, 51, 07, 00, 00, E9, 0D, FE, FF, FF, CC, CC, CC, CC, CC, 3B, 0D, 00, F0, 45, 00, 75, 03, C2, 00, 00, E9, 3A, 09, 00, 00, CC, CC, CC, CC, CC, CC, FF, 25, A8, 16, 46, 00, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 5D, E9, 05, 00, 00, 00, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 81, EC, D0, 02, 00, 00, A1, 00, F0, 45, 00, 33, C5, 89, 45, FC, 89, 85, E0, FD, FF, FF, 89, 8D, DC, FD, FF, FF, 89, 95, D8, FD, FF, FF, 89, 9D, D4, FD, FF, FF, 89, B5, D0, FD, FF, FF, 89, BD, CC, FD, FF, FF, 66, 8C, 95, F8, FD, FF, FF...
 
[+]

Entropy:
7.9393  (probably packed)

Code size:
373 KB (381,952 bytes)

The file windows8-setup.exe has been seen being distributed by the following 6 URLs.

http://informatiweb.digidip.net/visit?url=http://web.esd.microsoft.com/W8DL/WSEC5B1D8A9DFDFD92DFB736C5B1D8956B5B1D8/Windows8-Setup.exe&ppref=http://www.informatiweb.net/tutoriels/informatique/.../228--windows-8-8-1-10-reparation-du-demarrage.html

https://docs.google.com/uc?id=0B1e7cfk6W2S5cHgzUnJoOEwwcDg&export=download

https://docs.google.com/uc?authuser=0&id=0B1e7cfk6W2S5cHgzUnJoOEwwcDg&export=download