home

vhdtool.exe

VhdTool

Microsoft Corporation

Publisher:
Microsoft Corporation

Product:
VhdTool

Version:
2.0.0.0

MD5:
1b8be77e741cee1eb5fa3f9dac7c9ed1

SHA-1:
db2345fd48ca19dbfa5ed694724374ee814d3730

SHA-256:
d30fb794a80befdda301154f815341960f55b6f3000b5bddd99010fc7d09c269

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 3:29:39 AM UTC  (today)

File size:
57 KB (58,368 bytes)

Product version:
2.0.0.0

Copyright:
Copyright (C) Microsoft Corporation. All rights reserved.

Original file name:
VhdTool

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
1/12/2011 12:17:22 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
768:zesJWtwDNYKUS6s9NmgqMR7gUCMpLjb+hpWCRUk6HhEPn2UEDetrT8B:zdOc6JANnqMR7gUCWju16B8f4B

Entry address:
0x2E3F

Entry point:
E8, 36, 33, 00, 00, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, F8, EE, 40, 00, 89, 0D, F4, EE, 40, 00, 89, 15, F0, EE, 40, 00, 89, 1D, EC, EE, 40, 00, 89, 35, E8, EE, 40, 00, 89, 3D, E4, EE, 40, 00, 66, 8C, 15, 10, EF, 40, 00, 66, 8C, 0D, 04, EF, 40, 00, 66, 8C, 1D, E0, EE, 40, 00, 66, 8C, 05, DC, EE, 40, 00, 66, 8C, 25, D8, EE, 40, 00, 66, 8C, 2D, D4, EE, 40, 00, 9C, 8F, 05, 08, EF, 40, 00, 8B, 45, 00, A3, FC, EE, 40, 00, 8B, 45, 04, A3, 00, EF, 40, 00, 8D, 45, 08, A3, 0C, EF, 40...
 
[+]

Entropy:
6.1469

Code size:
35 KB (35,840 bytes)

The file vhdtool.exe has been seen being distributed by the following 2 URLs.

http://www.arefs.com/file.axd?file=2012/.../VhdTool.exe

http://archive.msdn.microsoft.com/vhdtool/.../ProjectReleases.aspx?ReleaseId=5344

Scan vhdtool.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.