» MachineId.exe
Overview
Analysis
File Details
Programs (1)

MachineId.exe

MachineIdTool

Installer Wizard

The application MachineId.exe, “Machine ID Generation Tool” by Installer Wizard has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program WinThruster by Solvusoft Corporation.

File name:

MachineId.exe

Publisher:

Solvusoft Corporation (signed by Installer Wizard)

Product:

MachineIdTool

Description:

Machine ID Generation Tool

Version:

1.0.13.0

MD5:

21c84899c72f77f9e67fd392734cbfdc

SHA-1:

e561f2ff653d24d40bd80b959b4cd478cd212cf2

SHA-256:

7bd041a60ce4a171b1d5a6cfee7c6e26b25e0c0e186e7e6c2f5c9c1b1053ae6a

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/23/2024 10:44:45 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Solvusoft.Installer.Meta (L)

15.10.3.23

File size:

367.4 KB (376,256 bytes)

Product version:

1.0.13.0

Original file name:

MachineId.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\Program Files\solvusoft\winthruster\machineid.exe

Digital Signature

Signed by:

Installer Wizard

Authority:

COMODO CA Limited

Valid from:

8/27/2013 10:00:00 AM

Valid to:

8/27/2016 9:59:59 AM

Subject:

CN=Installer Wizard, O=Installer Wizard, STREET=848 N. Rainbow Blvd., STREET="#3321", L=Las Vegas, S=NV, PostalCode=89107, C=US

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00936840633163DBE99483CEE1F9B95E45

File PE Metadata

Compilation timestamp:

4/24/2012 7:06:10 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

6144:oL5G7+I4bPrZEVsRap0qLwmC5OUAYqFkwNjbzOdG6HnzdZUUfZX:oLg+BPrZEVCap0qcmCAUAYqv1bzOtAUV

Entry address:

0x233DF

Entry point:

E8, 58, 77, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 0C, 75, 1D, E8, AB, 18, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 72, FC, FF, FF, 83, C4, 14, 83, C8, FF, EB, 4D, 8B, 45, 08, 3B, C3, 74, DC, 56, 89, 45, E8, 89, 45, E0, 8D, 45, 10, 50, 53, FF, 75, 0C, 8D, 45, E0, 50, C7, 45, E4, FF, FF, FF, 7F, C7, 45, EC, 42, 00, 00, 00, E8, 99, 79, 00, 00, 83, C4, 10, FF, 4D, E4, 8B, F0, 78, 07, 8B, 45, E0, 88, 18, EB, 0C, 8D, 45, E0, 50, 53, E8, 74, 77, 00, 00, 59... 
[+]

Entropy:

6.4423

Code size:

266 KB (272,384 bytes)

The file MachineId.exe has been discovered within the following program.

WinThruster by Solvusoft Corporation

Publisher's description - “WinThruster detects and repairs hundreds of PC errors, optimizes performance settings, and speeds up your PC. It repairs PC problems, decrease program load time, removes PC clutter, extends your computer's life, and restores system performance.”

solvusoft.com

40% remove it

Remove MachineId.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.