home

altoolssetup_free.exe

알툴즈 공개용 통합팩 설치 프로그램

ESTsoft Corp.

Publisher:
ESTsoft Corp.  (signed and verified)

Product:
알툴즈 공개용 통합팩 설치 프로그램

Version:
1.0.1.1

MD5:
ffab7dd522e288cd0e8cc12256d28159

SHA-1:
fb53d935842e7083fa0f7116d2179d1ff7bb4491

SHA-256:
f0c52c439c98752dab12997e0c99c10afaa4eea15ea2ed5143ae3024351da61b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 9:45:59 AM UTC  (today)

File size:
566.2 KB (579,768 bytes)

Product version:
1.0.1.1

Copyright:
(c) ESTsoft Corp. All rights reserved.

Original file name:
ALToolsSetup.exe

File type:
Executable application (Win32 EXE)

Language:
Korean (Korea)

Common path:
C:\users\{user}\downloads\altoolssetup_free.exe

Digital Signature
Signed by:
ESTsoft Corp.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
11/10/2006 3:23:47 AM

Valid to:
11/30/2008 12:31:43 AM

Subject:
CN=ESTsoft Corp., OU=Development Department, O=ESTsoft Corp., L=SEOUL, S=GYEONGGI-DO, C=KR

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
211670CBFB606D88A36BC9831D019ABD

File PE Metadata
Compilation timestamp:
5/30/2008 12:10:25 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:DKY7Fi0fC3v/Dy/GEAJ4pC4GqMdukasju+/uHzfx++blO+XfXb:DK+U3+OEAJ4anC8+XPb

Entry address:
0x42FAB

Entry point:
E8, 94, B7, 00, 00, E9, 78, FE, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, E0, 2B, 47, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, E0, 2B, 47, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B...
 
[+]

Entropy:
6.6114

Code size:
356.5 KB (365,056 bytes)

The file altoolssetup_free.exe has been seen being distributed by the following URL.

http://aldn.altools.co.kr/.../ALTOOLSsetup_free.exe

Scan altoolssetup_free.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.