home

setconfig_exermtool.exe

SetConfig.exe Removal Tool

HP

This is a setup program which is used to install the application. The file has been seen being downloaded from d3.driverscollection.com and multiple other hosts.
Publisher:
Hewlett Packard   (signed by HP)

Product:
SetConfig.exe Removal Tool

Version:
1.0.0.1

MD5:
60f6515d725da7ef7bedb67b11b847a0

SHA-1:
18ee3acc996304260ff4455b182442265f6db30f

SHA-256:
c7fe097a719c9793eee6c307f027342cadf8abb515c5460eab7649b644d73da6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 6:49:01 PM UTC  (today)

File size:
315.7 KB (323,240 bytes)

Product version:
1.0.0.1

Original file name:
stub32i.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\setconfig_exermtool.exe

Digital Signature
Signed by:
HP

Authority:
VeriSign, Inc.

Valid from:
1/31/2005 1:00:00 AM

Valid to:
2/1/2006 12:59:59 AM

Subject:
CN=HP, OU=IPG, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=HP, L=Boise, S=idaho, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4AA9858DC9DDB5D95F8471D3866986D3

File PE Metadata
Compilation timestamp:
8/2/2002 9:01:18 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:FA1ehl/69NcGiQAP6MmsCXHlcHjEcCDQLwBVYvdtsPD6a:FDl/UcnPkFUjGDby+

Entry address:
0x8AF7

Entry point:
55, 8B, EC, 6A, FF, 68, 20, 43, 41, 00, 68, F0, C3, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, F0, 41, 41, 00, 33, D2, 8A, D4, 89, 15, 7C, 93, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 78, 93, 41, 00, C1, E1, 08, 03, CA, 89, 0D, 74, 93, 41, 00, C1, E8, 10, A3, 70, 93, 41, 00, 33, F6, 56, E8, 70, 02, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, D1, 36, 00, 00, FF, 15, F4, 41, 41, 00, A3, 4C, BA, 41, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
76 KB (77,824 bytes)

The file setconfig_exermtool.exe has been seen being distributed by the following 14 URLs.

https://d3.driverscollection.com/1d39c9ed809dcb1/0fe11f29f37e6c25ec35f3622e9bf47950ae9d3479ba895a37b478f8f92a60ec31ca4cde75f4a04e71965d1d064156585818bf2d/4/80/10/.../SetConfig_exeRmTool.exe

https://d3.driverscollection.com/77b4fb03d6d9/6f2f772f819228ec52cb9e5d6337b6327b03dce2f0df93e75b190be7edc3b915c7d097804f1a41c3bb3c0988f902b63f56b350be/4/80/10/.../SetConfig_exeRmTool.exe

https://d3.driverscollection.com/1b015b14e5e6159/718558986723dcf990fc1b6754edb1ab65fcb31a851fe6a37f979733f0c4f46b9e315e875612ec18214fdf3d69c7bf4e5803ad36/4/80/10/.../SetConfig_exeRmTool.exe

https://d3.driverscollection.com/1d39c9e67253e62/1f1844f9f674bbeb165fa42d21f123a52bd2da21e79af48a2ea58f7815cbeec4044fd68e2da1654e6bd23ab8bfa444d8561b8911/4/80/10/.../SetConfig_exeRmTool.exe

http://h20565.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265352F434F4C31313133372F6C6A2D33323532392D312F536574436F6E6669675F657865526D546F6F6C2E657865

http://h20565.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265352F434F4C31313133362F6C6A2D33323532372D312F536574436F6E6669675F657865526D546F6F6C2E657865

http://www.helpjet.net/dlredirect/HP-LaserJet-1010/.../8c79fcb77c163921b0ebbc3c8c409d38.html

http://h20566.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265352F434F4C31313133362F6C6A2D33323532372D312F536574436F6E6669675F657865526D546F6F6C2E657865

http://h20564.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265352F434F4C31313133372F6C6A2D33323532392D312F536574436F6E6669675F657865526D546F6F6C2E657865

http://h20564.www2.hp.com/hpsc/swd/.../obtainSoftware?url=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265352F434F4C31313133362F6C6A2D33323532372D312F536574436F6E6669675F657865526D546F6F6C2E657865

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=238322&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=228|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265352F434F4C31313133362F6C6A2D33323532372D312F536574436F6E6669675F657865526D546F6F6C2E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareDownloadEventHandler.jsp?redirectReason=SWD_FTP_Request&swItem=lj-32527-1&prodSeriesId=306505&prodLine=8A&targetPage=ftp://ftp.hp.com/pub/softlib/software5/COL11136/.../SetConfig_exeRmTool.exe&filesize=323240

http://ftp.hp.com/pub/softlib/software5/COL11136/.../SetConfig_exeRmTool.exe

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/action.process/public/psi/.../?sp4ts.oid=306507&javax.portlet.action=true&spf_p.tpst=swdMain&javax.portlet.begCacheTok=com.vignette.cachetoken&spf_p.prp_swdMain=wsrp-interactionState=entitleKey=1872243|source=listDriver|swItem=|swEnvOID=228|target=687474703A2F2F6674702E68702E636F6D2F7075622F736F66746C69622F736F667477617265352F434F4C31313133362F6C6A2D33323532372D312F536574436F6E6669675F657865526D546F6F6C2E657865|itemLocale=|swLang=|action=driverDownload&javax.portlet.endCacheTok=com.vignette.cachetoken

Scan setconfig_exermtool.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.