MSEInstall.exe

Microsoft Security Client

Microsoft Corporation

The MSEInstall Package is the installer for Microsoft Security Essentials, an anti-virus protection platform. Upon new releases/updates of MSEInstall, Windows Update will download the client and install it. This is a setup and installation application. The file has been seen being downloaded from filehippo.com and multiple other hosts.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft Security Client

Description:
MSEInstall Package

Version:
4.8.0204.0

MD5:
1da73677b6207fd6a0f35f28632d828d

SHA-1:
94559ca082200e799cb5606a139a0d092a123d14

SHA-256:
2744df60f95d35ea72febea8d9850fef69f2ea6ca727fc475b8327be0a64b961

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
8/20/2018 7:36:12 AM UTC  (today)

File size:
13.6 MB (14,243,008 bytes)

Product version:
4.8.0204.0

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
MSEInstall.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\mseinstall.exe

Digital Signature
Authority:
Microsoft Corporation

Valid from:
4/22/2014 12:39:00 PM

Valid to:
7/22/2015 12:39:00 PM

Subject:
CN=Microsoft Corporation, OU=AOC, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
33000000C91909212EBBA648810001000000C9

File PE Metadata
Compilation timestamp:
3/13/2009 1:58:56 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
393216:q1PQg/rpM21TH8peKfg7FXrgqPCs4MaZm6pSWapzD:sPQUX7m9I7Fbras4jDkl

Entry address:
0x9850

Entry point:
48, 83, EC, 58, 48, 89, 5C, 24, 70, 48, 89, 7C, 24, 78, 66, 81, 3D, 99, 67, FF, FF, 4D, 5A, 74, 08, 33, DB, 89, 5C, 24, 60, EB, 7C, 48, 63, 05, C4, 67, FF, FF, 48, 8D, 0D, 81, 67, FF, FF, 48, 03, C1, 81, 38, 50, 45, 00, 00, 74, 08, 33, DB, 89, 5C, 24, 60, EB, 5B, 0F, B7, 48, 18, 81, F9, 0B, 01, 00, 00, 74, 32, 81, F9, 0B, 02, 00, 00, 74, 08, 33, DB, 89, 5C, 24, 60, EB, 3F, 83, B8, 84, 00, 00, 00, 0E, 77, 08, 33, DB, 89, 5C, 24, 60, EB, 2E, 33, DB, 39, 98, F8, 00, 00, 00, 0F, 95, C3, 89, 5C, 24, 60, EB, 1D...
 
[+]

Entropy:
7.9882  (probably packed)

Code size:
56 KB (57,344 bytes)

The file MSEInstall.exe has been seen being distributed by the following 50 URLs.

http://filehippo.com/download/file/.../

http://www.downloadcrew.com/?act=software.download&id=423&t=1456574914&c=2cd7cbd34ce31b092914118a52fc393a679bf9ff

http://filehippo.com/download/file/.../

http://download.microsoft.com/download/A/3/8/A38FFBF2-1122-48B4-AF60-E44F6DC28BD8/ENUS/.../MSEInstall.exe

http://filehippo.com/es/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://download.network.am/.../MSSE4.8.0204.0x64.exe

http://filehippo.com/download/file/.../

http://pe203-cmgt-8200.sunderland.ac.uk/remediation/downloads/antivirus/.../microsoftsecurityessientals.exe

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

blob:http://sd-web.softonic.com/5af0d56b-1bfa-47a5-8544-a22084eac4d6

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://mutaz.net/.../index.php?id=204

http://filehippo.com/es/download/file/.../

http://www.filehorse.com/download/file/.../

http://fs36.filehippo.com/1212/.../mseinstall.exe

https://doc-00-7g-docs.googleusercontent.com/docs/securesc/n4crbtdrk48nggufjrirlsfsusj1e8ru/l9e8jb0qog6mi8gte9ij5aqvsk6mm0da/1475265600000/.../12052633171961821721/0B-QpN1vMEypGZkxHZlhIUnVnVkE?e=download

http://lb.cdn.m6web.fr/d/c/a/0c0841cee8423859819889ce3cf5a105/55718735/soft/.../microsoft-se_4-8-204-0_fr_291762_64.exe

about:internet

http://filehippo.com/download/file/.../

http://microsoft-security-essentials-xp.en.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAMKl w3RNk PFw6cF019AKeyvE4Tlod8uG66kS2AjjU82p1C3T7ayayT4wBHql9RQP5tMmkSHSXvnQw8d72DsA/ qXxIOk3WfWIjRsGhSd2e3YOXMk1gTvcaz3U1qCY4xotBWOj211tUUhSkno7nA2jxPxUXDuwx9GD7IKihFsWdybMAxBJ7goNO2w9fCnHW57YLrR2IaM9gYTBV6pG8Y01s4nk1YwI2CHdpgOTQodxeZxgZciF1TNYfQ2b4HG2qABl5cxbVVO9lTg2u/HOEy6SjbxmjPMz0tuDUIjHFWuXhFnCBmR4z4pgdn2sgbCO3/ F hbfZVCIjR gvUfLaLWqMeysqodOSNDwg3Oyap/hjVduUOFdscdjw8fIpV43v8mlMbHUShl6SdhDyflrt/KKoEKW9f17/KKOs48TniHG4eX ciiCsN3Ov2lFaxaS3Q1aaJJb2pKUcI2hlZw4s4rRP8QIncOnSL8Loon4sm7hmd1vZjWZUNOM5zzOYRjhNsZ/A2/ZiTN9SwfLIz06WjjuMU jR9R/6ct0CtNG EJFruo/Wk 3W1glsVzjB/MHVMphKu3T3mzh1F T3b4onrjnAUG5sMD/.../kQUPs=

http://filehippo.com/download/file/.../

https://docs.google.com/uc?authuser=0&id=0B3qEwH4otMmrbWtLMXM2WG5uYVk&export=download

Latest 30 of 154 download URLs