Upload files

By using Saferwall you consent to our Terms of Service and Privacy Policy and allow us to share your submission with the security community. Learn more

Summary
Like

Analyse score

1/ 13

1 antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

exe

exe

Basic properties

CRC32

0xeba96e90

MD5

6bb894f3efe7047daea945bf7205de9a

Magic

PE32+ executable (GUI) x86-64, for MS Windows

SHA1

638ba46ce92d677ca409b256147cdfb9756f5c89

SHA256

449cb163c93852bf55148239cbd8457ec253b258de7ac31fb8a65f810accbd20

SHA512

e367838c90c7813bbab6c3294d5ce1a0d318ae8707462d6246fd9c8dd6ae27ba4701a0fd5400e93157cafa1c7e34decdfb9c8cd03bd9b18f69fc7c5f5eee6655

SSDeep

24576:A7eokafnkAwgcU+29fR4PQviXq1pj3EDT5m+m8W:A6efnkdlUF92PGBOT3m8

Size

1.56MB

TLSH

cf757c5262e44098d2bbde76c5629a22eab13c061f34cadf4650f5792f33be1da3c711

Packer
  • PE+(64): compiler: Microsoft Visual C/C++(2015 v.14.0)[-]
  • PE+(64): linker: Microsoft Linker(14.0, Visual Studio 2015 14.0*)[EXE64]
TrID
  • 72.7% (.CPL) Windows Control Panel Item (generic) (57583/11/19)
  • 13.2% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 6.3% (.EXE) Win16 NE executable (generic) (5038/12/1)
  • 2.5% (.EXE) OS/2 Executable (generic) (2029/13)
  • 2.5% (.EXE) Generic Win/DOS Executable (2002/3)
Tags

ExifTool File Metadata

CharacterSet

Unicode

CodeSize

1023.50KB

CompanyName

wj32

EntryPoint

0xe2efc

ExifToolVersionNumber

12.88

FileDescription

Process Hacker

FileFlags

(none)

FileFlagsMask

0x0017

FileOs

Win32

FileSize

1631 kB

FileSubtype

0

FileType

Win64 EXE

FileTypeExtension

exe

FileVersion

2.39.0.124

FileVersionNumber

2.39.0.124

ImageFileCharacteristics

Executable, Large address aware

ImageVersion

0.0

InitializedDataSize

581.50KB

InternalName

Process Hacker

LanguageCode

English (Australian)

LegalCopyright

Licensed under the GNU GPL, v3.

LinkerVersion

14.0

MachineType

AMD AMD64

MimeType

application/octet-stream

ObjectFileType

Executable application

OriginalFileName

ProcessHacker.exe

OsVersion

5.2

PeType

PE32+

ProductName

Process Hacker

ProductVersion

2.39.0.124

ProductVersionNumber

2.39.0.124

Subsystem

Windows GUI

SubsystemVersion

5.2

UninitializedDataSize

0

Submissions

Published Name Source Country
449cb163c93852bf55148239cbd8457ec253b258de7ac31fb8a65f810accbd20 web
N/A