home

dotNetFx40_Full_setup.exe

Microsoft .NET Framework 4

Microsoft Corporation

This is a self-extracting archive and installer. The file has been seen being downloaded from go.vitzo.com.
Publisher:
Microsoft Corporation

Product:
Microsoft .NET Framework 4

Description:
Microsoft .NET Framework 4 Setup

Version:
4.0.30319.01

MD5:
90551009fc898ff9e1c3daf1748a6f44

SHA-1:
d1b426d0902f00e16898f609726221efd6bb57f5

SHA-256:
9166cbfe124cceb569a92d0cb30d8582a9bbc2cab4ce1615e116374d6f1d5432

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:00:32 AM UTC  (today)

File size:
932.6 KB (954,952 bytes)

Product version:
4.0.30319.01

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
dotNetFx40_Full_setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\dotnetfx40_full_setup.exe

File PE Metadata
Compilation timestamp:
10/10/2009 2:27:34 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:ptl4x8xAxQCqBjvdUcyezFSjaBHFaNlsqK5/oh6iZf1LUXw/vxNI:p4x8xqStvGexm8FCspg0iZf1LUXD

Entry address:
0x191C6

Entry point:
72, 03, FF, CF, 40, BF, 2E, 06, 76, 22, 0F, BE, C6, 81, FA, 1E, 4D, 11, EA, 32, C8, 81, EE, D3, 7D, 00, 00, 4D, 81, C6, 64, 04, 00, 00, 80, C6, B6, 69, D7, 1A, 7F, 2C, 33, 0F, AF, F8, 8D, 1D, 23, 78, 26, 68, E8, 39, 00, 00, 00, 8B, EE, 38, F6, B3, 66, 40, 80, C8, 4F, 84, E1, 68, EC, 0D, 00, 00, EB, 06, 8D, 3D, 46, 85, FD, 41, 5B, 86, C6, 81, EB, EC, 0D, 00, 00, 33, DE, 0F, AF, F9, F7, C1, 8D, CF, 24, 3B, 8B, F3, 0F, AF, FA, B0, 54, 03, CE, F6, C1, 2D, FF, C8, 75, 05, 0F, AF, CE, 85, FE, 88, F6, 2B, ED, 89...
 
[+]

Entropy:
7.8706  (probably packed)

Code size:
161.5 KB (165,376 bytes)

The file dotNetFx40_Full_setup.exe has been seen being distributed by the following URL.

http://go.vitzo.com/dotnet-4-installer

Scan dotNetFx40_Full_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.