home

dxsetup.exe

Microsoft DirectX for Windows

Microsoft Corporation

This is a self-extracting archive and installer.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft® DirectX for Windows®

Description:
Microsoft DirectX Setup

Version:
4.9.0.0904

MD5:
f5443547caac20aa334a88817579270f

SHA-1:
3bf8b321c2e43af72307508df417a154c3f1afd5

SHA-256:
cdfdc371a373cd0f0daa00db46bae7e19258dd8ef7e521e57be96cbacdbb242f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
4/25/2024 7:37:35 AM UTC  (today)

File size:
513.3 KB (525,656 bytes)

Product version:
4.9.0.0904

Copyright:
Copyright (c) Microsoft Corporation. All rights reserved.

Original file name:
dxsetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\dxsetup.exe

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
12/8/2009 12:40:29 AM

Valid to:
3/8/2011 12:40:29 AM

Subject:
CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
6101CF3E00000000000F

File PE Metadata
Compilation timestamp:
2/4/2010 7:44:45 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
3072:6i6LKeHXG/8nUc2nDzw0FWtj/WM0PSQ5WOTLxcZ6rKmMH2/5Mjt4zT1mFDYkCIEu:S72nDzw0FWdw9x2Ws4VMVZ

Entry address:
0x6FE7

Entry point:
E8, 55, 23, 00, 00, E9, 19, FE, FF, FF, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 10, 75, 20, E8, F8, 32, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 91, 32, 00, 00, 83, C4, 14, 83, C8, FF, E9, 80, 00, 00, 00, 8B, 4D, 0C, 3B, CB, 56, 8B, 75, 08, 74, 21, 3B, F3, 75, 1D, E8, C9, 32, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 62, 32, 00, 00, 83, C4, 14, 83, C8, FF, EB, 53, B8, FF, FF, FF, 7F, 3B, C8, 89, 45, E4, 77, 03, 89, 4D, E4, 57, FF, 75, 18, 8D, 45...
 
[+]

Code size:
71.5 KB (73,216 bytes)

The file dxsetup.exe has been seen being distributed by the following 4 URLs.

temp:DXSETUP.exe

http://originaldll.com/.../22866.exe

about:internet

http://es.originaldll.com/.../22866.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.