Upload files

By using Saferwall you consent to our Terms of Service and Privacy Policy and allow us to share your submission with the security community. Learn more

Summary
Like

Analyse score

6/ 14

6 antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

exe

exe

Basic properties

CRC32

0x514b5b64

MD5

3015163d07125fc87e329df22a23ea87

Magic

PE32+ executable (GUI) x86-64, for MS Windows

SHA1

08382a4c71b9a183ab37296d02f8191daa3adf90

SHA256

0a80e3b2fef96a8f300cfa92a3fe80e9006ed1e81d2bdc84936ffe7281bfc284

SHA512

76e650a0f6bc2b70a2590d8fb5cea0d01c0df374e01e830a91f39c679d446a6d27d73283339a29f420808cc27672b49aa54217f0643c563f5a7475dbd9a39ebc

SSDeep

3072:tuTO4rRZizgvXPmGgpXscjSU39Oq+ZDPUEMTlqa25OFdn94jgcMu2lFvu1F:tkZAgvfmGgtUs9OZDPFMTB8Of9yKPlNo

Size

182.82KB

TLSH

5b04af47b3f400a9d076d276d9f5470a9bb1bc110b3183df265986aa6f33bd48d39322

Packer
  • PE+(64): compiler: Microsoft Visual C/C++(2008 SP1)[-]
  • PE+(64): linker: Microsoft Linker(9.0)[EXE64]
TrID
  • 58.9% (.CPL) Windows Control Panel Item (generic) (57583/11/19)
  • 16.9% (.EXE) Microsoft Visual C++ compiled executable (generic) (16529/12/5)
  • 10.7% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 5.1% (.EXE) Win16 NE executable (generic) (5038/12/1)
  • 2.1% (.ICL) Windows Icons Library (generic) (2059/9)
Tags

ExifTool File Metadata

CharacterSet

Unicode

CodeSize

97.50KB

CompanyName

Microsoft Corporation

EntryPoint

0x1743c

ExifToolVersionNumber

12.76

FileDescription

Windows® installer

FileFlags

(none)

FileFlagsMask

0x003f

FileOs

Windows NT 32-bit

FileSize

187 kB

FileSubtype

0

FileType

Win64 EXE

FileTypeExtension

exe

FileVersion

5.0.7601.24535 (win7sp1_ldr_escrow.191105-1059)

FileVersionNumber

5.0.7601.24535

ImageFileCharacteristics

Executable, Large address aware

ImageVersion

6.1

InitializedDataSize

32.50KB

InternalName

msiexec

LanguageCode

English (U.S.)

LegalCopyright

© Microsoft Corporation. All rights reserved.

LinkerVersion

9.0

MachineType

AMD AMD64

MimeType

application/octet-stream

ObjectFileType

Executable application

OriginalFileName

msiexec.exe

OsVersion

6.1

PeType

PE32+

ProductName

Windows Installer - Unicode

ProductVersion

5.0.7601.24535

ProductVersionNumber

5.0.7601.24535

Subsystem

Windows GUI

SubsystemVersion

5.2

UninitializedDataSize

0

Submissions

Published Name Source Country
0a80e3b2fef96a8f300cfa92a3fe80e9006ed1e81d2bdc84936ffe7281bfc284 web
N/A