Upload files

By using Saferwall you consent to our Terms of Service and Privacy Policy and allow us to share your submission with the security community. Learn more

Summary
Like

Analyse score

0/ 13

No antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

exe

exe

Basic properties

CRC32

0x26fa1600

MD5

428cec6b0034e0f183eb5bae887be480

Magic

PE32+ executable (console) x86-64, for MS Windows

SHA1

7140caf2a73676d1f7cd5e8529db861f4704c939

SHA256

3f6aa206177bebb29fc534c587a246e0f395941640f3f266c80743af95a02150

SHA512

509b8c138c4928524b4830488a96bd7e4bc7db2c494b10c68e1edcf7d901879126168eaa6635818d29734540f8400e376e5716a3b4dc052cba4e267bbaad7253

SSDeep

6144:R7yQ7lW6U+TSC+5EGZKScVkWIFx69gKZHhopOJ4Jto2OIuvXqmm:R7y0GsSp5EGZVcVkWInWgKhxNvXqm

Size

316.00KB

TLSH

ef64391e23a81ce5d9679239c943c225d6b27c35672192ef13e0cd7b3e13ae97638b05

Packer
  • PE+(64): compiler: Microsoft Visual C/C++(-)[-]
  • PE+(64): linker: Microsoft Linker(14.30**)[EXE64,console]
TrID
  • 75.5% (.CPL) Windows Control Panel Item (generic) (57583/11/19)
  • 13.8% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 2.7% (.ICL) Windows Icons Library (generic) (2059/9)
  • 2.6% (.EXE) OS/2 Executable (generic) (2029/13)
  • 2.6% (.EXE) Generic Win/DOS Executable (2002/3)
Tags

ExifTool File Metadata

CharacterSet

Unicode

CodeSize

212.00KB

CompanyName

Microsoft Corporation

EntryPoint

0x1f8f0

ExifToolVersionNumber

12.88

FileDescription

Windows Command Processor

FileFlags

(none)

FileFlagsMask

0x003f

FileOs

Windows NT 32-bit

FileSize

324 kB

FileSubtype

0

FileType

Win64 EXE

FileTypeExtension

exe

FileVersion

10.0.22621.3672 (WinBuild.160101.0800)

FileVersionNumber

10.0.22621.3672

ImageFileCharacteristics

Executable, Large address aware

ImageVersion

10.0

InitializedDataSize

208.00KB

InternalName

cmd

LanguageCode

English (U.S.)

LegalCopyright

© Microsoft Corporation. All rights reserved.

LinkerVersion

14.30

MachineType

AMD AMD64

MimeType

application/octet-stream

ObjectFileType

Executable application

OriginalFileName

Cmd.Exe

OsVersion

10.0

PeType

PE32+

ProductName

Microsoft® Windows® Operating System

ProductVersion

10.0.22621.3672

ProductVersionNumber

10.0.22621.3672

Subsystem

Windows command line

SubsystemVersion

10.0

UninitializedDataSize

0

Submissions

Published Name Source Country
cmd.exe web
N/A