× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4c75ccfad0d480d510385f6c1e48c815211db64feefa9be18ad55772028c581d
File name: EMET Setup.msi
Detection ratio: 0 / 59
Analysis date: 2018-11-22 13:56:03 UTC ( 1 month, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware 20181122
AegisLab 20181122
AhnLab-V3 20181122
Alibaba 20180921
ALYac 20181122
Antiy-AVL 20181122
Arcabit 20181122
Avast 20181122
Avast-Mobile 20181122
AVG 20181122
Avira (no cloud) 20181122
Babable 20180918
Baidu 20181122
BitDefender 20181122
Bkav 20181122
CAT-QuickHeal 20181122
ClamAV 20181122
CMC 20181122
Comodo 20181122
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20181122
Cyren 20181122
DrWeb 20181122
eGambit 20181122
Emsisoft 20181122
Endgame 20181108
ESET-NOD32 20181122
F-Prot 20181122
F-Secure 20181122
Fortinet 20181122
GData 20181122
Ikarus 20181122
Sophos ML 20181108
Jiangmin 20181122
K7AntiVirus 20181122
K7GW 20181122
Kaspersky 20181122
Kingsoft 20181122
Malwarebytes 20181122
MAX 20181122
McAfee 20181122
McAfee-GW-Edition 20181122
Microsoft 20181122
eScan 20181122
NANO-Antivirus 20181122
Palo Alto Networks (Known Signatures) 20181122
Panda 20181121
Qihoo-360 20181122
Rising 20181122
SentinelOne (Static ML) 20181011
Sophos AV 20181122
SUPERAntiSpyware 20181121
Symantec 20181122
Symantec Mobile Insight 20181121
TACHYON 20181122
Tencent 20181122
TheHacker 20181118
Trapmine 20180918
TrendMicro 20181122
TrendMicro-HouseCall 20181122
Trustlook 20181122
VBA32 20181122
VIPRE None
ViRobot 20181122
Webroot 20181122
Yandex 20181122
Zillya 20181122
ZoneAlarm by Check Point 20181122
Zoner 20181122
The file being studied is a Windows Installer file! These types of files are software components used for the installation, maintenance, and removal of software on modern Microsoft Windows systems.
Authenticode signature block
Signature verification Signed file, verified signature
Signing date 8:08 PM 1/29/2016
Signers
[+] Microsoft Corporation
Status This certificate or one of the certificates in the certificate chain is not time valid.
Valid from 9:31 PM 10/28/2015
Valid to 9:31 PM 1/28/2017
Valid usage Code Signing, Microsoft Publisher
Algorithm sha256RSA
Thumbrint 54DA79490495AA6D7898B183D86EA600E3FC5EBF
Serial number 33 00 00 00 64 47 84 94 86 DB 41 19 38 00 00 00 00 00 64
[+] Microsoft Code Signing PCA 2011
Status Valid
Valid from 9:59 PM 7/8/2011
Valid to 10:09 PM 7/8/2026
Valid usage All
Algorithm sha256RSA
Thumbrint F252E794FE438E35ACE6E53762C0A234A2C52135
Serial number 61 0E 90 D2 00 00 00 00 00 03
[+] Microsoft Root Certificate Authority 2011
Status Valid
Valid from 11:05 PM 3/22/2011
Valid to 11:13 PM 3/22/2036
Valid usage All
Algorithm sha256RSA
Thumbrint 8F43288AD272F3103B6FB1428485EA3014C0BCFE
Serial number 3F 8B C8 B5 FC 9F B2 96 43 B5 69 D6 6C 42 E1 44
Counter signers
[+] Microsoft Time-Stamp Service
Status This certificate or one of the certificates in the certificate chain is not time valid.
Valid from 7:14 PM 10/7/2015
Valid to 7:14 PM 1/7/2017
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 8F058D3E6B12A46CD348CF61D1FB4B0857AA89D3
Serial number 33 00 00 00 8A 57 EA 89 A3 49 EB 8B E8 00 00 00 00 00 8A
[+] Microsoft Time-Stamp PCA
Status Valid
Valid from 1:53 PM 4/3/2007
Valid to 2:03 PM 4/3/2021
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 375FCB825C3DC3752A02E34EB70993B4997191EF
Serial number 61 16 68 34 00 00 00 00 00 1C
[+] Microsoft Root Certificate Authority
Status Valid
Valid from 12:19 AM 5/10/2001
Valid to 12:28 AM 5/10/2021
Valid usage All
Algorithm sha1RSA
Thumbrint CDD4EEAE6000AC7F40C3802C171E30148030C072
Serial number 79 AD 16 A1 4A A0 A5 AD 4C 73 58 F4 07 13 2E 65
OLE structured storage summary
creation_datetime
2016-01-29 19:42:36
author
Microsoft Corporation
title
Installation Database
page_count
300
word_count
2
keywords
Installer
last_saved
2016-01-29 19:42:36
revision_number
{066E1659-D542-4FBD-9468-E05D324D4C01}
application_name
Windows Installer XML Toolset (3.10.0.2103)
subject
Install EMET 5.5
template
Intel;1033
code_page
Latin I
comments
Enhanced Mitigation Experience Toolkit 5.5
OLE Streams
name
Root Entry
clsid
000c1084-0000-0000-c000-000000000046
type_literal
root
clsid_literal
on
sid
0
size
13760
type_literal
stream
sid
56
name
\x05DigitalSignature
size
7586
type_literal
stream
sid
55
name
\x05MsiDigitalSignatureEx
size
20
type_literal
stream
sid
2
name
\x05SummaryInformation
size
508
type_literal
stream
sid
32
name
\u4192\u4472\u47fe\u3bc1\u3847\u380d\u3bcc\u3941\u3805\u3883\u3845\u4802
size
41439
type_literal
stream
sid
14
name
\u430b\u4131\u4735\u3b7e\u4268\u410b\u4471\u4568\u430b\u4437\u44e4
size
105054
type_literal
stream
sid
12
name
\u430b\u4131\u4735\u3dfe\u46a8\u43cf\u4567\u45cb\u4831
size
318
type_literal
stream
sid
13
name
\u430b\u4131\u4735\u3fbe\u3bf3\u41ef\u3af5\u4477
size
318
type_literal
stream
sid
15
name
\u430b\u4131\u4735\u403e\u46ec\u3a8c
size
205824
type_literal
stream
sid
9
name
\u430b\u4131\u4735\u47fe\u3a0f\u3987\u394a\u3a8f\u397f\u3849\u47c1\u394b\u3844\u3aff\u3b81\u47c5\u3ac4\u3b42\u398e\u3986\u384c\u384e
size
1811
type_literal
stream
sid
10
name
\u430b\u4131\u4735\u47fe\u3ac2\u390d\u3ac3\u3983\u383f\u39cf\u47c9\u3848\u3804\u3aff\u3a08\u47c3\u38c6\u39c4\u3a0d\u3a00\u3989\u3ace
size
479
type_literal
stream
sid
11
name
\u430b\u4131\u4735\u47fe\u3b40\u3884\u3a4d\u3943\u38bf\u3985\u47c6\u3a04\u3984\u3abf\u3881\u47c6\u39cd\u3a8e\u39cb\u3a0b\u3bcd\u3b0c
size
776
type_literal
stream
sid
1
name
\u4573\u41f2\u41b8\u47b7\u4126\u4825
size
26172715
type_literal
stream
sid
52
name
\u4840\u3b3f\u43f2\u4438\u45b1
size
1808
type_literal
stream
sid
49
name
\u4840\u3c9e\u421d\u45fb
size
204
type_literal
stream
sid
54
name
\u4840\u3f3f\u4577\u446c\u3b6a\u45e4\u4824
size
186553
type_literal
stream
sid
53
name
\u4840\u3f3f\u4577\u446c\u3e6a\u44b2\u482f
size
4616
type_literal
stream
sid
51
name
\u4840\u3f7f\u4164\u422f\u4836
size
84
type_literal
stream
sid
3
name
\u4840\u3fff\u43e4\u41ec\u45e4\u44ac\u4831
size
5472
type_literal
stream
sid
35
name
\u4840\u4115\u4478\u42e6\u448c\u41f1\u45ec\u44ac\u4831
size
4
type_literal
stream
sid
40
name
\u4840\u411b\u4327\u3af2\u45f8\u44b7\u4831
size
180
type_literal
stream
sid
31
name
\u4840\u4192\u4472
size
4
type_literal
stream
sid
4
name
\u4840\u41ca\u4330\u3bb1\u423b\u4626\u4237\u421c\u4634\u4468\u4226
size
48
type_literal
stream
sid
5
name
\u4840\u41ca\u4330\u3fb1\u3f12\u4528\u4238\u41b1\u4828
size
72
type_literal
stream
sid
6
name
\u4840\u41ca\u45f9\u46ce\u41a8\u45f8\u3f28\u4528\u4238\u41b1\u4828
size
48
type_literal
stream
sid
29
name
\u4840\u420f\u45e4\u4578\u3b28\u4432\u44b3\u4231\u45f1\u4836
size
184
type_literal
stream
sid
28
name
\u4840\u420f\u45e4\u4578\u4828
size
48
type_literal
stream
sid
36
name
\u4840\u4216\u4327\u4824
size
14
type_literal
stream
sid
42
name
\u4840\u421b\u3d6a\u41b2\u45e4\u4572
size
30
type_literal
stream
sid
41
name
\u4840\u421b\u432a\u45f6\u4735
size
204
type_literal
stream
sid
43
name
\u4840\u421b\u44b0\u4239\u430f\u422f
size
10
type_literal
stream
sid
44
name
\u4840\u421c\u4626\u4235\u4158\u422d\u45e6\u4836
size
14
type_literal
stream
sid
45
name
\u4840\u421c\u4675\u41ac\u3b28\u4472\u4577\u43f2
size
12
type_literal
stream
sid
46
name
\u4840\u421c\u4675\u41ac\u3ca8\u45b1\u4137\u43ef
size
32
type_literal
stream
sid
48
name
\u4840\u421d\u45fb\u45dc\u43fc\u4828
size
48
type_literal
stream
sid
47
name
\u4840\u42dc\u4572\u41b7\u45f8
size
64
type_literal
stream
sid
8
name
\u4840\u430b\u4131\u4735
size
28
type_literal
stream
sid
24
name
\u4840\u430d\u4235\u45e6\u4572\u483c
size
66
type_literal
stream
sid
23
name
\u4840\u430d\u43e4\u42b2
size
572
type_literal
stream
sid
30
name
\u4840\u430f\u422f
size
640
type_literal
stream
sid
33
name
\u4840\u4452\u45f6\u43e4\u3baf\u423b\u4626\u4237\u421c\u4634\u4468\u4226
size
246
type_literal
stream
sid
34
name
\u4840\u4452\u45f6\u43e4\u3faf\u3f12\u4528\u4238\u41b1\u4828
size
132
type_literal
stream
sid
17
name
\u4840\u448c\u41f1\u45ec\u44ac\u4831
size
6
type_literal
stream
sid
16
name
\u4840\u448c\u44f0\u4472\u4468\u4837
size
552
type_literal
stream
sid
19
name
\u4840\u448c\u45f1\u44b5\u3b2f\u4472\u4327\u4337\u4472
size
608
type_literal
stream
sid
20
name
\u4840\u448c\u45f1\u44b5\u3baf\u4239\u45f1
size
1140
type_literal
stream
sid
18
name
\u4840\u448c\u45f1\u44b5\u482f
size
5876
type_literal
stream
sid
7
name
\u4840\u44ca\u3f33\u4128\u41b5\u482b
size
12
type_literal
stream
sid
50
name
\u4840\u44de\u456a\u41e4\u4828
size
32
type_literal
stream
sid
21
name
\u4840\u454c\u4128\u4237\u448f\u41ef\u4568
size
12
type_literal
stream
sid
26
name
\u4840\u454e\u44b5\u4835
size
12
type_literal
stream
sid
39
name
\u4840\u4559\u44f2\u4568\u4737
size
176
type_literal
stream
sid
37
name
\u4840\u4596\u3bec\u43ec\u3c68\u45a4\u482b
size
160
type_literal
stream
sid
38
name
\u4840\u4596\u3f2c\u4568\u4339\u4226\u448c\u4271\u42ac
size
14
type_literal
stream
sid
22
name
\u4840\u460c\u45f6\u4432\u418a\u4337\u4472
size
144
type_literal
stream
sid
25
name
\u4840\u460d\u43f3\u41ac\u45e4\u3be8\u43ec\u4828
size
20
type_literal
stream
sid
27
name
\u4840\u464e\u4468\u3db7\u44e4\u4333\u42b1
size
208
ExifTool file metadata
MIMEType
image/vnd.fpx

ModifyDate
2016:01:29 18:42:36

Template
Intel;1033

Title
Installation Database

FileType
FPX

Author
Microsoft Corporation

Comments
Enhanced Mitigation Experience Toolkit 5.5

CodePage
Windows Latin 1 (Western European)

FileTypeExtension
fpx

Words
2

Keywords
Installer

CreateDate
2016:01:29 18:42:36

Security
None

Software
Windows Installer XML Toolset (3.10.0.2103)

Pages
300

RevisionNumber
{066E1659-D542-4FBD-9468-E05D324D4C01}

Subject
Install EMET 5.5

File identification
MD5 9402c51896e9e32eeacffdb490d27285
SHA1 82fbd8650b38d1b12108c6430d9d0ee5ecce4484
SHA256 4c75ccfad0d480d510385f6c1e48c815211db64feefa9be18ad55772028c581d
ssdeep
393216:bas/3vwxy/y5SbSboAFGpvNReGS0FqcuCo29RdiWf2AQ5gykh0DtR7s+u6U6YeRw:bamwZ7jGZFxn/diWEkhEVUEBV9ziTZD

File size 25.6 MB ( 26816512 bytes )
File type Windows Installer
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 10.0, Code page: 1252, Title: Installation Database, Subject: Install EMET 5.5, Author: Microsoft Corporation, Keywords: Installer, Comments: Enhanced Mitigation Experience Toolkit 5.5, Template: Intel

TrID Microsoft Windows Installer (89.6%)
Windows Installer Patch (8.7%)
Generic OLE2 / Multistream Compound File (1.5%)
Tags
msi signed via-tor

VirusTotal metadata
First submission 2016-01-30 16:46:04 UTC ( 2 years, 11 months ago )
Last submission 2019-01-03 07:40:27 UTC ( 2 weeks, 1 day ago )
File names EMET_55Setup20170629-18719-93t1xa.msi
EMET 5.5 Setup.msi
813385
EMET Setup (1).msi
emet_setup.msi
EMET Setup.msi
EMET Setup_55.msi
Enhanced Mitigation Experience Toolkit (EMET) 5.5 .msi
EMET Setup_5.5 - Copy.msi
EMET Setup 5.5 RTM.msi
df2aa.msi
EMET v5.5.msi
21b847f1.msi
645696
EMET Setup(1).msi
EMET Setup.msi
EMET Setup.msi
EMET%205.5%20Setup.msi
EMET Setup - Copy.msi
EMET_5.5_Setup.msi
Enhanced Mitigation Experience Toolkit - EMET 5_5 Setup.msi
EMET Setup.msi
EMET Setup_Ver5-5.msi
EMET Setup_5.5.msi
EMET-5-5.msi
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!