home

tsmsetup.exe

The Staking Machine V5.0

David Morris

This is a self-extracting archive and installer. The file has been seen being downloaded from www.thestakingmachine.com.
Publisher:
1Million Ltd  (signed by David Morris)

Product:
The Staking Machine V5.0

Description:
The Staking Machine Version 5.0

Version:
1.0.0.0

MD5:
aa15fdb03935839d08f0e5ef37cda5be

SHA-1:
2149fa57e81a1329c9f01d8e7a4accbb7ee3f826

SHA-256:
a7bccfdb83e5010b17bfe9ee1278a25275c0a6bce3ee6e1f211990d058c59ddd

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
7/12/2025 6:57:33 PM UTC  (today)

Scan engine
Detection
Engine version

NANO AntiVirus
Trojan.Win32.Agent.dkafea
0.30.0.296

Trend Micro House Call
Suspicious_GEN.F47V0110
7.2.221

File size:
8.5 MB (8,944,904 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2014

Original file name:
TheStakingMachine.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\tsmsetup.exe

Digital Signature
Signed by:
David Morris

Authority:
DigiCert Inc

Valid from:
8/21/2014 1:00:00 AM

Valid to:
8/26/2015 1:00:00 PM

Subject:
CN=David Morris, O=David Morris, L=Banstead, C=GB

Issuer:
CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
030241D76C11D3921195C591C5FBF03F

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:Mt4QfXvdOM+/PG4q9xAOXwSmFdVz4o0oPI8kAs+XxiFJADRl7ZVg91:8wM+G46xPpAdVUo0oQ8kz+Bvl7ZVc1

Entry address:
0x2F5F4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 64, F4, 42, 00, E8, 28, 6C, FD, FF, E8, C7, FA, FF, FF, E8, 7A, 4E, FD, FF, 8B, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9958

Developed / compiled with:
Microsoft Visual C++

Code size:
186 KB (190,464 bytes)

The file tsmsetup.exe has been seen being distributed by the following URL.

http://www.thestakingmachine.com/.../TSMsetup.exe

Scan tsmsetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.