This is a Windows system installed file with Windows File Protection (WFP) enabled.
There are 64 versions of msdtc.exe in the wild, the latest version being 2001.12.9330.0 (winmain_win8rc.120518-1423). It is started as a Windows Service called 'Coordenador de transações distribuídas' with the name 'MSDTC' and described as “Coordena as transações que incluem vários gerenciadores de recursos, como bancos de dados, filas de mensagens e sistemas de arquivos. Se esse serviço for interrompido, essas transações falharão. Se o serviço for desabilitado, os serviços que dependerem explicitamente dele não serão inicializados.”. . It is also run with NETWORK SERVICE privileges. The average file size is about 41.63 KB. During the process's lifecycle, the typical CPU resource utilization is about 0.0027% including both foreground and background operations, the average private memory consumption is about 6.04 MB with the maximum memory reaching around 8.75 MB. Addionally, typically read and write I/O disk operations is about 102 Bytes per minute for reads and 1.47 KB per minute for writes.
The Distributed Transaction Coordinator (MSDTC) service is a component of modern versions of Microsoft Windows that is responsible for coordinating transactions that span multiple resource managers, such as databases, message queues, and file systems.
(Note, the behaviors below are for all versions of msdtc.exe, select a unique version for details.)
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
Based on 40+ industry antivirus scanners, 4 of them detected the following malware.
United States installs about 42.61% of Microsoft Distributed Transaction Coordinator Service.
