Multi-License Discount Quote

Change Region

English
Threat Database Trojans Trojan.Expiro.EA

Trojan.Expiro.EA

By CagedTech in Trojans

Threat Scorecard

Popularity Rank: 2,917
Threat Level: 80 % (High)
Infected Computers: 1,293
First Seen: April 14, 2022
Last Seen: April 22, 2026
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Trojan.Expiro.EA
Signature status: No Signature

Known Samples

MD5: 0c0b7489b5dc004b403303aef09408b6
SHA1: 0be428f496672811ed8f5e54247fcba0e32b1bc2
File Size: 1.58 MB, 1577984 bytes
MD5: 13d8f5218135f10699440c0ce21364b1
SHA1: e13d521193b5cabceac8f691b463404505e7769b
File Size: 1.47 MB, 1466880 bytes
MD5: ceacc1e6dd9a524804ec210eb3b8e566
SHA1: 8a2d885c4c0de45aefa77812b452cdbfaa3b81de
File Size: 1.69 MB, 1694720 bytes
MD5: f1739143af69dba70fbd4d475cf9ffb9
SHA1: 1f35b6e5c10956da70aa897d123ee469663b67f6
File Size: 1.65 MB, 1648128 bytes
MD5: 4199326339182bcc8151b56368edadba
SHA1: 4fbd88d4f3641e44ac4d29f48b2def48caa506ac
SHA256: 07A7FFAC5D0402FB2422BFA00CDBB21087BFF040743C9F5A7527C905277758FA
File Size: 1.41 MB, 1414144 bytes
Show More
MD5: b276c704cf26e1b3ec19295f8d4f79ff
SHA1: f6616690c799e441d90ba38254e25360bf48bffe
SHA256: 9E6E4B3E0133AE86242594A047005D0DBF0FB9BED5BF78AABDFF1A219503C812
File Size: 1.55 MB, 1549312 bytes
MD5: 2be23ca94a2aa8d64f694511d4055a04
SHA1: f44902383541344cd4c3597b92c98e3bf8eff48e
SHA256: B0A546F290085FFE1155975455A99CE7D3C29BFF5368651EF6A2E7BDC6555D6E
File Size: 2.29 MB, 2294272 bytes
MD5: 7552f95c9622cf47ea9074850503df3f
SHA1: 898c07fbcf3880f3e525596eb5681885ab6eb903
SHA256: 726C0521A91EAEAE2C1C981ED616F89D8B564EB0D93FAE6349A59EAF279EF413
File Size: 1.79 MB, 1793536 bytes
MD5: 5a1da228372ef807154118c4e8a1d5f6
SHA1: a10fe4fbe018c59d303dc67f57021008ce04b16b
SHA256: 8C77E5549D0F06D32101CB5B7991A81C94AAA280F1AF448E0F9214403E2158C1
File Size: 1.79 MB, 1793536 bytes
MD5: c4904ed9b1c66d3cb5a842777a38ae91
SHA1: e99af906df49e71583798f2b07f8ece99d7ea8b9
SHA256: 28BDEAB461BC4194D765F7775D1C18FC6DF918EF52580CF1566FA7873DAB48BC
File Size: 1.51 MB, 1509376 bytes
MD5: 965972cffdcc0da1f84964ed0e60ec1a
SHA1: 202f8d6f7376915817a5ab7dd8c45f8d33e08a48
SHA256: 82C12A7E1879EB9DC2F433F815F1096B31166C65510E3DAA543C06210CEF95FD
File Size: 1.55 MB, 1551872 bytes
MD5: a860743185acf692021bd3c78e50bbef
SHA1: 9fd771783f2b4fa2a5fa6d148e247a8781c0f6e4
SHA256: C0F3E86EC8AE571AB3583DD60ECFA56F8CBF7A6F418918E7229D909724E932A8
File Size: 1.83 MB, 1833472 bytes
MD5: bf854e7ea23d2303e8d57f35b2eccfb8
SHA1: 09066a34a423b34199961a9451dce0d4763dfae5
SHA256: 868704604A70BEDA3C3BA179F337A484DA92CFA594CF4E39AFE1CA8D12D8C428
File Size: 1.41 MB, 1411072 bytes
MD5: 627a3b7c8011ca27c83c1b0aa01db9bd
SHA1: c001029dc2f14efaefdeb60500eea21e57007236
SHA256: C239F705B3D4B598B3563942D627E39DE8382DD7F1193B4A626573EB8E5CAE71
File Size: 1.54 MB, 1542656 bytes
MD5: 5363a2c81432fd1cfbbd54db48b63ffb
SHA1: 4c891005ae6fdaee13044ea0c93ab0a0b6158838
SHA256: 8BE1A98D13BC470B64A3D47D895E891FA62E02C661FAED6CCF1C729B49FE7BEA
File Size: 1.56 MB, 1555968 bytes
MD5: bd649d1812449eaddf5783b13767d112
SHA1: ae555803d9b0b159421fca7274e62e810ec33a9c
SHA256: E6B192ACD335E07C33D717D6422825BC63392A302F8DB8DFDD8A8D78BDB63011
File Size: 2.38 MB, 2377216 bytes
MD5: 01e8ab6f3f64f0f3bcf9f30669d51f69
SHA1: ce1c76b51caa00563fe59237c6f446bf06bc699f
SHA256: F10BB0692FE50FD1EDD8491A7780293228BDF3FE8270862061DFD48928968130
File Size: 1.51 MB, 1506816 bytes
MD5: 075161e039a042f5265291b202726939
SHA1: d973a8b4af59d1ac13681560bc677e7258d6d4cc
SHA256: 8D9C80E033809EABAFA7B61F3BE4DDE519D914A743CE3CBFAC4EECFE5CA8C8A4
File Size: 1.41 MB, 1407488 bytes
MD5: ee3f45febf72bc8ee8e1b8787b467f8b
SHA1: 86a4cb8fd5b1d09a882c169f6ac894b22f747a6e
SHA256: F0402DA9E4A022135F0CA9FC21E85AC4499C6EFC1AE5D11597CC9884A2490A4B
File Size: 1.33 MB, 1327616 bytes
MD5: d0c6055644e01d8a5803ad52b3349638
SHA1: f757567fbadbc1576f1a73de01520a5755b09409
SHA256: 47B828CEEE7B9488022255E72902F13D097CC6B1A62339265A85A841C09260F0
File Size: 1.44 MB, 1440256 bytes
MD5: 64c532945e11601b1c712acea520a115
SHA1: dff07b26619b600d3e822895e5cedf5e4d20f86d
SHA256: 82AAFD95D824F697BD04D475FA386500B126E4AB06DC0F3050EE50C6E9AC6F36
File Size: 2.38 MB, 2375168 bytes
MD5: 3ab7bca67ec73257769103d6df075265
SHA1: 583a6c79803d6db1ade6c589ae07e269803fd4ad
SHA256: 9A52BDCB1DC8CB851F7D189250DAF244DA0F107161913EB67113E5E6E6B6FF39
File Size: 2.30 MB, 2297344 bytes
MD5: e5706f8a5badc3d0b8f104b13f19750a
SHA1: 6651aed15fe86ae9b98e23cac55b4fc7be11de3a
SHA256: F4137C613E0457A39E832F6CA8095EF637C67C66B9365552574333815EB62FF1
File Size: 2.35 MB, 2352128 bytes
MD5: 89ff8bcc75624dac4200e1b8479d4476
SHA1: 0866ba3e7393a6a08d908ba008057d118f9ed1e3
SHA256: 23C69703CAA230F9A00A333D63EC0D4E8C0B16E913B9946E69B423D69F81F3C2
File Size: 2.54 MB, 2536960 bytes
MD5: a404c3f1232095b799f05226bfc721e7
SHA1: eaef64f46585b037870a674fd895a1b50c0bb2af
SHA256: 9F4465CED0F9ED1DBA4238527C4E3193897D4D2A9CAAEDB65A280AC9422E9875
File Size: 2.38 MB, 2382336 bytes
MD5: 1fc3e996c5c264e96c51544c055f20f7
SHA1: 82ea055d79a4966b0f12de0df2b5167c7ce5053c
SHA256: 8EA262D9DCF78F3E5B30580BD8FE829475B6956187562FCF7FDD1AC727C7F417
File Size: 1.77 MB, 1769984 bytes
MD5: c054eb018754beaa9561b0161cd20494
SHA1: fa34d73f0b5dd2973a280bad4674c4e25177aba5
SHA256: 6697BBF8B48D241CBD454EB2EA9CF4F1FBF05E99DC3B0960C98E370EFF393A43
File Size: 2.38 MB, 2384384 bytes
MD5: 01867c3159af44e3d176be207a269d2e
SHA1: b541f5ccf85019e7efcd336746a0e5a1849152d2
SHA256: A4AEE125A5476233087274DF5025D8DA15635227272C9D12DEB4EE3F91AD2867
File Size: 1.40 MB, 1401856 bytes
MD5: ee6f8d8cd4769c73e14f6bbf9f214f74
SHA1: 720b9b2ad2df3e2e2b167befeb6414839f5e4058
SHA256: 35B2D84A6B380F7502144403C95F635A1E1C7137AF0E71B2DA2EF654538E80B6
File Size: 1.56 MB, 1555968 bytes
MD5: 187b0bcd7ed1121948160641a47afc5b
SHA1: 0b6b0c0f60bf406acfbfd5668c25fcaa9359be57
SHA256: FAA7638828A7AF963AB8E8DD836F729219ACD6B39EEDAA0BAD0A31459482BDD8
File Size: 1.82 MB, 1821184 bytes
MD5: 65742515261e710d88885b3279decd41
SHA1: cf9d2adb744c09962070da30c6b2465caca41a08
SHA256: F006D3503A4246D76A27E52C3F21D49DFE8FEF7A252EFFDB21207EFABAEFD3E0
File Size: 2.29 MB, 2294272 bytes
MD5: 0a43cbf65657d3d4e445ab515ad1ff67
SHA1: bce2408920b37f26ab52e6b2d42f8f0c01d94ce8
SHA256: 5D3646206915C644A104E87CE9214C89CEB92518BC48E2FE790F0BBE30F15479
File Size: 1.33 MB, 1327104 bytes
MD5: d76f3fa077f8668629c86ede1c7a6ba9
SHA1: 271a95abf73d8365d2040fe7ff353274dbed01fc
SHA256: 26541DED36D0EAEF4025835BDE821CB0AC8C99DEF90A5F0354CE9E66A0BB9B4D
File Size: 2.24 MB, 2239488 bytes
MD5: 71ca4c29c7e3da1ac07b47be57f3ea2e
SHA1: 2f7e2d79a99f1c67a737ff7ac67329d7885b7591
SHA256: 1879934A351A8FD957B1FB07B682436CD9674D1EA3BB30BFD9731F7B30104478
File Size: 1.55 MB, 1551872 bytes
MD5: 6a1fecfedcb81771e4c2f91739457ca2
SHA1: c4a87a688aa9236067023bb28c1a1e88bdc6e857
SHA256: CBB6B7D989ADCDEA46E0312DDE281EAB3323181C7C0E693293131F7B608249B6
File Size: 2.40 MB, 2395136 bytes
MD5: d804693654d1fe4f6cd4463d9433ee9b
SHA1: 9eeb45e2bcbbc38618bab577e24254e846b30da5
SHA256: 85A3F5F4254E2D78394E18D4944523835156E2511683F000386900BE208FE939
File Size: 1.96 MB, 1957888 bytes
MD5: a30ab8261bd8459bef1b563197d80ce1
SHA1: 9c0e7d1bfb9ee389f58019da21de6571e52d2e08
SHA256: 692C38208BACB015CFD6A9DD98E930FD6712DEA1FF8E76738015D455BFE27568
File Size: 1.67 MB, 1668608 bytes
MD5: f1373a5f78b8f869bddf37c87772bc42
SHA1: 9e2be4ac1846667f617de5964c9b599624eed859
SHA256: 5EAC1DD6E5A95B64594085BC643633EECD837FC65A315DAF4C20751706E472AC
File Size: 1.49 MB, 1486848 bytes
MD5: 08450a3a6f0a87fe74fc3dacde062d25
SHA1: 91eb168a0f93d74644b30981485db74a559d9903
SHA256: 47F84BA8E68A24F2809711CDC51B5CC3F2CA59508615B4B366B291736BABD0BE
File Size: 1.69 MB, 1685504 bytes
MD5: 7ebf349eb5e21bc0f56193989b4e8c63
SHA1: a744ee0d1955b3d78db3af86bd4eba5bd927a81b
SHA256: 352A183DEAB1AC73CDDBA5F968F8B72A4DBFD0890ED83EA87ECDCFF26CABD337
File Size: 1.86 MB, 1859584 bytes
MD5: 5888f380b256ca9af267e4fa8add1b71
SHA1: ebc0dbc6aa181d55fdc1af2459a3d342d14302c9
SHA256: 9601B0AF66C027B2734333A8C71F799B3514530DD58BD9C89617CFA04F75EBE6
File Size: 1.63 MB, 1630208 bytes
MD5: 2fe0157d57eb3fb7981f504de8005e2b
SHA1: aafa72df17a9379dbea44e2d49be3ca79156eee4
SHA256: E694B4BE066BE9248C514043EA057D801A67FEE8974FB58EC2BB7795DAB8F717
File Size: 2.40 MB, 2395136 bytes
MD5: 69b9def3f3729993818e6dbcd86a59d5
SHA1: 7220f538dce389fcb2a393ed3aed808b6d2aed4d
SHA256: F7B7BC4ED0B7604EF8825E37EE8A08908A829B9866C0FCBBDAB06F00C49CE771
File Size: 1.52 MB, 1518080 bytes
MD5: 7b92a45fe5bd83322a0160f634b68307
SHA1: 6b6d8a9145dbccd41b6539934b4f37ca99486505
SHA256: 94235BBF585A1CCE56DC9D146C06E44DEBED0E4D22E706FEADB14423A58F0F54
File Size: 1.34 MB, 1340416 bytes
MD5: d3b9601350226df4dd95efdca80aa2f4
SHA1: b6b03fe34680e17f0e6a10f8cc097a9bf7980baa
SHA256: 40C8474D2252E97F6807B816F0988EBD800802E17410BC056263E41FD7CA2D87
File Size: 1.47 MB, 1467904 bytes
MD5: 8e96bc0a8aae8a10af12c314e7500f38
SHA1: 26336e5fc908e8259c8973168f27d0933baa6355
SHA256: AA073605B66B9A1AD3531D5C16D2B7F3FC83D0791A397D868E01929D9B737D04
File Size: 1.65 MB, 1646080 bytes
MD5: 0f8311b51fdaec068fac761a991f2318
SHA1: eef4b589f480261b1819c375980d1697b07227aa
SHA256: D49F9EBDED6186196CA59D8DD138A025B24170263C9D013ADBA9DFC42C4D2F3E
File Size: 1.34 MB, 1338880 bytes
MD5: cba3d3399b2531a93c78f0b74e2c0fd6
SHA1: deb0277fe31f27d192cda3745821c49c7aad302e
SHA256: 56D81DD5FBE9EC5A8C6434D4CA2A615637AB62C752DBDFD2D49CD339B03CECB7
File Size: 1.34 MB, 1338368 bytes
MD5: 3b98ccc87007f089bfdf17adbd5e7e03
SHA1: b8e9341f7d80abae642fb3fd13ad4c87b62aaec5
SHA256: 0CB823BEB922583B0B173AD33F22CED9FA993068972124B090DFC5760CEAAED2
File Size: 1.51 MB, 1506816 bytes
MD5: 3c948fd80fb1bcd7b6cd433a98031e49
SHA1: 029b8a018edb30ec0e5f03910c6e0451790f8a4a
SHA256: 4118FE9109C701BB9F8AA7D6B8683231E64D2FABC803EC200ED4335EF2081F76
File Size: 2.40 MB, 2396672 bytes
MD5: 70dbeea3d12b9992175f9771ad92f537
SHA1: 47d688b98d3248219fc4f308ba5dbb08cd4ad232
SHA256: 7700EAA74279A0262FA1B902DCE8674E2D1B398B9A7F6A27008A1D82F688A493
File Size: 1.67 MB, 1665024 bytes
MD5: 20464aaf2a857a026e605d5f22e14dba
SHA1: b6eb49504d8f6c3e58040495d5c2bd23cf72459b
SHA256: E45A9B6FCB5A28021A8EF7B227CA7F718C4F2F02FF3B68C88DA9F3F8692655F0
File Size: 1.66 MB, 1655296 bytes
MD5: 3e0ccc378cbf20f8231d3a86b5ca07f5
SHA1: 85594a2a4ac53a0ed8f313ebf9d3b80f59414bbf
SHA256: 3E5D184AE6C4A8D8D17A7BA2E93D52C0795FE4EA561DDB192AF24DF57F484214
File Size: 1.48 MB, 1480192 bytes
MD5: 917a17a6ee38bc2597ee4f9019f1fdcc
SHA1: 1349b70b703acab4e8b895d9e50eec1ffa0ad41a
SHA256: DA5CB260C361BFD07F203BB6B015EB2FFB59D95647A030385162E0D9143EA7DD
File Size: 1.46 MB, 1464320 bytes
MD5: f7ab34ea86784e5b2a61b058beddaf00
SHA1: 4dc6bf6591bff8bbf4dbf3e5145bd51e1f4e509a
SHA256: 7E3071263F31E8CF3B39888CFD8BC1AEF46791B13B8868804F6B6B396F87F27A
File Size: 2.28 MB, 2275328 bytes
MD5: 7bfe270092eca9836854258a50749ab2
SHA1: df94dd98ca5d88c32462698f5d300d2c300249ed
SHA256: C7707F80BB923B62E3B13BECC9DA8257366EDABE6B0ABFF72D2017D307FC4AD8
File Size: 2.47 MB, 2465792 bytes
MD5: f1333207d2861d5d851f7aa8102b334b
SHA1: 3956600209d4383bab17fadcf6a912e38fd0989f
SHA256: 47C6C17D58680B7D4D8D18FF411107397FC3A95E77197822EEFF499BC7F98444
File Size: 1.67 MB, 1666048 bytes
MD5: 88658c917b2ad8ef9488d046cf843571
SHA1: 0763805f27cc8575fd7f51e0f4c3b90fad8b253c
SHA256: 71691913A2350F0CA4DF0D2300308F6E2BD69AD362B6A5BB3F79AD059BA7CF7E
File Size: 1.74 MB, 1744384 bytes
MD5: c8dfa0981f5e35d5d3157bf9523a1ad6
SHA1: 9a15d285db4650ade4123f20f33db37be7204dfc
SHA256: 7D79A86704AC1AA07A7B35864F95DBD1DE314D7D83B445377754670EF6A5D7C4
File Size: 1.67 MB, 1674752 bytes
MD5: dedf3be688d257395626476d8c916c98
SHA1: 80feb4332736bd24ef53d99f8b6edd2ab95cc9dc
SHA256: 5C774673A429A66FFD119F613E6960440EA8909B7D59E394DBD5B301F4172DEE
File Size: 1.97 MB, 1967104 bytes
MD5: 858e00bed1136cabba9b4e2238dab925
SHA1: 2d5e5c1adc298b30179a59f608ece22c708e88f3
SHA256: 7C105515EAB4D36D536F544B1E70EB844F4D718ECE2CFE4992B6FB653B229429
File Size: 1.38 MB, 1376768 bytes
MD5: 665cba35aec8ff15667e325bb2c83a24
SHA1: 6b654eb955f5a75c69b301e062d149160eb0b042
SHA256: D20550C73D65D0F7BCABE2407462BE1E2BAFAF7E29F7C0607D8888C127C242E0
File Size: 2.30 MB, 2298368 bytes
MD5: e57bf3f684726565ed4e7310cc02f89c
SHA1: d66a89d2a2d62a59e24f095fef30bc2c009b359b
SHA256: 1EB49227303E4B838276675946F9A999F4F22DE25130AE4A8D14C72078349F8D
File Size: 1.70 MB, 1704448 bytes
MD5: 2ef7eb7f8a332f5c5cabb7d39b866a3b
SHA1: 5df714df7f7e480d864de0ad194a41938cf27d56
SHA256: AD167DE4D3D21B85440DAABE8D27AF83902FA5B53891A3B9A294F831265B7926
File Size: 1.80 MB, 1800192 bytes
MD5: 5a46b9fc28c4fdd859e9f05d7790c398
SHA1: 9a588b85efbf4dabfc7f845e6ba9a2d8231ba816
SHA256: 0CC183A1DA8D5BFB3C928AFBCC3074E3A6951E93903F0FFAAE842EF0DB7C900B
File Size: 2.29 MB, 2287616 bytes
MD5: ec3f20d3d548484c95d1e28d82810334
SHA1: 41727198a881283e76ff4b8ffe06cdae6ff0325a
SHA256: 4774984E402E30ABF2CCB17C7810834360F392333709BF8656B20B32FAA5096A
File Size: 1.55 MB, 1551872 bytes
MD5: d3471fc1fa402125994d347c0c779765
SHA1: 6b7a04628b9c4ef8df4ad6b98f67fd98d0f1a93e
SHA256: A11E520CB8581EC4DC2AFCBEEFB9DD12851FD384C5F8AADBBE4952E49A1B3AB2
File Size: 1.52 MB, 1519616 bytes
MD5: 9168133d5ef6be74049ac7a551e93090
SHA1: c7d8acd81c0e52a74d532d0aaa76d0dbcec77300
SHA256: 4AD86DB754C5FB715269650D628A3048C8A747071197A8EB11C3F2ED44E7D8D1
File Size: 2.34 MB, 2341376 bytes
MD5: c80a4ad7afb859de5adfbd384cfa4da6
SHA1: 4439fcb4e499ba57771b732d6470c616db2dd27a
SHA256: 896F0015A2D6E390F96DC7B7107B8A5798928EB1F3F90516669F1DABD8E43B5C
File Size: 2.02 MB, 2016768 bytes
MD5: dd9d6d3a8b9a9b47fe9dd92df280df92
SHA1: 4d6c7e664a34b21b8b16cf7b5f65d0af6b08b697
SHA256: 7283AC1C8487CF76682D22A4A6311E89CAEC33B66EB531F4B6044D00EA67A2EC
File Size: 1.34 MB, 1338368 bytes
MD5: f5251194de135ccfe1531352028ecae9
SHA1: 38f691d9d3d75692168479bf0184317eca80f225
SHA256: AA9F92F683188BA4D85D05AA9BD3E9B4874950996C2E69CE0E07AA459B19CD40
File Size: 1.61 MB, 1609216 bytes
MD5: 08647caf75108a08d31303a650d75578
SHA1: fcca38f083a348209361d52e2bc52e171097726a
SHA256: 1C374E19AC20AAD1F54F34E0AA5A05729200EFA54DF557A06D901139F6E333B5
File Size: 1.80 MB, 1798144 bytes
MD5: d35f07864b2ab629d0ae38305ca400d8
SHA1: 9b1c8630bd66adf516817922ec14d35819ae7bcf
SHA256: 25F9E4826FD10C04737772FEF78DE4FEE36BC172F40F016BB0789D547381C15C
File Size: 2.35 MB, 2349568 bytes
MD5: b591a919143961d75f2d1fb777f8185e
SHA1: b710aa547b040a965552b176de10a0a22d34ed01
SHA256: C8F30D6F1CCF6AE0BB7A242F74A501E9B9BFD58087601289341A3865682B1535
File Size: 1.52 MB, 1518592 bytes
MD5: 86d116721b3c0e80488ed2566bee7239
SHA1: d98374eb2b8c961e28f04459f6f16ba3bc398758
SHA256: 0537947B0DCFED6CBCF2BB836188FA2CD5E71CA6983A89F630D31A15039F2315
File Size: 2.01 MB, 2011648 bytes
MD5: 8f67c6a64aea0a47868e3d57647b7bc9
SHA1: 8bd33fb7c0cb3811eb95c8d5601a8a2b0c2276c6
SHA256: E294C5B415CFD1D9780C006DCA06E8A701F2DA121D8502140D471C3DCBE44EB4
File Size: 2.43 MB, 2433536 bytes
MD5: c13960173b2c10e257ddad8dc07759dd
SHA1: e4041ba4a23deb8761c3e9d96f0c4019346153c2
SHA256: 6D49844DEEA5E56F058B2A559BFD1BEACC937BDA6A32C9B462CCE96FAFC2728F
File Size: 2.35 MB, 2348544 bytes
MD5: c45746238f239cb3b6b7e2fdec28ab50
SHA1: f23095904d45999235cd5391c87b71af31fe2dc3
SHA256: 497FB4AECCF7D50DCB37EE626B2271252CED2175A93813731E9035CD880C2EBF
File Size: 2.29 MB, 2288128 bytes
MD5: 73b400035a7b65736e6001e908c9d89d
SHA1: a87169a40144fbcd5fe63f43adffba2589013459
SHA256: FB9249708015EF5B9F9A36E5727A6AE86EC4FAF56A6A1359261D6BBCA58B864A
File Size: 2.34 MB, 2343936 bytes
MD5: 2fc1d5fd7b9799095e5e483699392dd9
SHA1: deddda8d2e429a0b80a646b2439ef2d072337ca3
SHA256: 5F6A1E15FED1EF0E19EDEB85E2782F0F261F92101DC00DF35488E006FA21E4F4
File Size: 2.29 MB, 2288128 bytes
MD5: 70aa28ffcd15489535cd857baf2b7926
SHA1: 767049befadc3aa27806abe202295f658a6d7e23
SHA256: D8CAEA9F6F2C16789F0A525C8CE1210EB7A34A98A4B247B724BD814ADAFCF4CE
File Size: 1.46 MB, 1458176 bytes
MD5: 09a71438ec6d37a47a02629922d84de1
SHA1: f8bf2f61965a5a0032b4326264063bbff6e767b4
SHA256: 5E882AFF3C3102CCE6E922C240AA746AFA48E5DCBC5673225BCA49D6F00A2D2E
File Size: 2.34 MB, 2338816 bytes
MD5: 45ce4ed719c4fc6e592192cf8bdda84a
SHA1: a005f676db2dcbb1feb8479d0434bb25d7d790cc
SHA256: 000DB6B19AC1687413509C9F0899C0EBC12586F7C54B2BF6D3B97D394C3366B8
File Size: 2.17 MB, 2173952 bytes
MD5: ac5eef6623d286aba15c5849d8b15d79
SHA1: 974eef1a8e606ad00228e84897f317dad73b0409
SHA256: E1F1DF4630905E296C21DD7B5E8B14E3266A95E384A6AD3A58C56ECDD3C7FED5
File Size: 1.73 MB, 1733120 bytes
MD5: fe3947a04c3c12cd72bc0af09ccc00e2
SHA1: bb4efa10cbb5609a0d6e0cfcd18f27458d95f25e
SHA256: 29F8C511D71917EAD5693E066F585C2C9B4F081B752D286343A400D43D8036AB
File Size: 1.52 MB, 1518080 bytes
MD5: b1111af49b6f66e41fdf48c853b64b1d
SHA1: 664b8b33c00e162f5e79a7281017e7668c9cf3fd
SHA256: 38E53989D18AAA20517E82A5E56BB829E693FC647C3E0A2B2B551DB9B0CAF0BE
File Size: 1.29 MB, 1290752 bytes
MD5: 38861022e5023938c45d161af069c4fc
SHA1: 69384ce824e2a33a74fd49679b24f688e5a65b84
SHA256: 9F0C4A844670B54A19240461E5F10461EF6248C983B9F4308A460364B474B5AC
File Size: 2.40 MB, 2396672 bytes
MD5: caba6f5950c92c1aa70344ba822ee6f1
SHA1: 47dbe907309374092d7cf7c6fa02c5e7cdb4e6cc
SHA256: D91ECB1C5C2C6642F9CBDB82394D82C6F1F2EBE32D8F0AA59F60705094B657F5
File Size: 2.34 MB, 2338816 bytes
MD5: 1bf0639c8b4751719210fb43f3cb2779
SHA1: fb635bad4d8f12d89f7e58ffe2f630760317f4e4
SHA256: BBE3A4EAF70F56C6836E50DBDA39AE458FE44A14322E5DF06E2D9AE5084625FA
File Size: 1.78 MB, 1778176 bytes
MD5: 01036c812daf3927b76b39763f423619
SHA1: 0ed1e8d91836aacf417ef245147674e10b12c7da
SHA256: 15D56D21566AAC1053539E3701D5CA44E559E378D4C6442911C1FCAAA144D057
File Size: 1.78 MB, 1780224 bytes
MD5: 2918092c055e8636b204f5f155e65a7b
SHA1: aed075da2bdc7f282fc2860d41202e1979973825
SHA256: A4B8EE53CC634C3745794441E21C93F225BA3183C04F4ED61056F394B5B1E533
File Size: 1.75 MB, 1746944 bytes
MD5: 43a17ce40465a408f24cb21fba78bfd7
SHA1: 80acd0c4e5b05b77395128907dbbb2abbbad26da
SHA256: 138889A68162D82A8476E6F9DE0BE16DBF6A1CBFF456CF22ED8567E1ED3CCF72
File Size: 1.76 MB, 1763328 bytes
MD5: a825a39c8048eecb32f65be9746692e4
SHA1: 7f6dcdddcaf9958865226e806178b6ec18271d2f
SHA256: E972F71FA67F58FDCDB1E93B7A84B6B7FD3421757D621678E4CA76C7C51BBBAE
File Size: 1.47 MB, 1466368 bytes
MD5: e4dde2fde00d95de002a302edbe4bfa2
SHA1: 83f2f656c8bbf962d78488e93fd2868fd93e7a8e
SHA256: D830F665A55C5B3211079C391AD88AD75998871BE368ED3852EE6FD121AA39F9
File Size: 1.64 MB, 1638400 bytes
MD5: 4d00d45f607ba02478073710fe71c5e3
SHA1: ebd9bbd8454471bdb59dddf054ea12a4fc3a3a9a
SHA256: 430BCD5BBDF493551D0CA501C2DE77D81FFDEC74B238A3DF30C3E3D7F87AF991
File Size: 2.32 MB, 2322432 bytes
MD5: 7d258c8a3daf90df133e1d5adf96869a
SHA1: 5cd9c8e9a937f87d7a8c731dee6baae444129cdf
SHA256: B3AD1E77A917096AED5FF2B0D63E8D0A27B7F3E629B56C20D945843ADCD8C2FD
File Size: 1.45 MB, 1446400 bytes
MD5: a713990e79574d4312d940b4452573c3
SHA1: deecd6cb7c10bbfb8c4f65963590c19f692596a2
SHA256: F5333B5E001A73A02AAE55C3E1947E5BEC6C566E1E37423542203D45999EFFA7
File Size: 1.39 MB, 1387520 bytes
MD5: d4f2a0e3b78ac5fa5fbf110343335103
SHA1: 5428eec97b8515b54e9223dd6ef9a099a3f1be3f
SHA256: 62816E3FBB636FCD868263951D0C259B9D24AF1CA668A3148079CAF882012B91
File Size: 1.49 MB, 1485824 bytes
MD5: a211925db83f952cb9ca3fc6c4cf3603
SHA1: d30401be690ade9980c01818decb688b537a57a0
SHA256: 9A5781499462764C0CC4B390C2BD4730778D0AD372B26189C16B87EEDBFA1DB4
File Size: 1.65 MB, 1653248 bytes
MD5: 551f6f2ae82631a2e3b3d5887e07b153
SHA1: 07d548cc4261dea40ccbdb5e3f0e1facfabaff84
SHA256: 03A5B9BD327D48C75B607686B23A0E1C72D81700B8844F1B6C29E3CFC0C06570
File Size: 2.02 MB, 2017792 bytes
MD5: 8ec551dba0e7978d29a849a9cf2d4f9f
SHA1: ef6d319acceab97b790a30ed6a86ce6f0b6d387a
SHA256: 5DE4102E9C98AD4782475C2BCC25357E124AD79F549CAF97BFC15A19AE6FB6DE
File Size: 2.21 MB, 2211328 bytes
MD5: 72168fa92959bed798ebf8f461dd20ae
SHA1: 9b386d5920f2c59a0450a8a1be19d123f60813f9
SHA256: CF7D61676B379D77AE02922700B75B713DBB11248EC148AAB7E2CF90DA9EC8BE
File Size: 1.70 MB, 1695232 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have debug information
  • File doesn't have exports table
  • File doesn't have relocations information
  • File doesn't have security information
  • File has exports table
  • File has TLS information
  • File is 64-bit executable
  • File is console application (IMAGE_SUBSYSTEM_WINDOWS_CUI)
  • File is either console or GUI application
Show More
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Show More

95 additional icons are not displayed above.

Windows PE Version Information

Name Value
Build I D
  • 20190211233335
  • 20250811145442
  • 20250827004350
  • 20251009125714
  • 20251217121356
  • 20260309125808
Built As UNICODE
Built On Fri 01/12/2024 12:21:13.75
Comments
  • Created by the WingMan Team.
  • Developed by Archeng
  • DolbyDAX2TrayIcon
  • http://www.autoitscript.com/autoit3/
Company Name
  • Adobe Inc.
  • Advanced Micro Devices, Inc.
  • Alibaba Group.
  • ANTICHEATEXPERT.COM
  • Apple Inc.
  • ASUSTeK Computer INC.
  • ASUSTeK COMPUTER INC.
  • Aura Inc.
  • Autodesk, Inc.
  • AutoIt Team
Show More
  • Brave Software, Inc.
  • BugSplat, LLC
  • ByteDance
  • Corel Corporation
  • Dell Technologies Inc.
  • Dolby Laboratories, Inc.
  • Electronic Arts, Inc.
  • Flexera
  • Google LLC
  • Intel Corporation
  • Logicool Co. Ltd.
  • Logitech Inc.
  • McAfee, LLC
  • Microsoft Corporation
  • Mozilla Foundation
  • NVIDIA
  • NVIDIA Corporation
  • OpenVPN GUI
  • Opera Norway AS
  • Oracle Corporation
  • Realtek Semiconductor
  • Realtek Semiconductor Corp.
  • SIEMENS AG
  • Simon Tatham
  • The Chromium Authors
  • TODO: <Company name>
  • Valve Corporation
  • 网易公司 Ltd
  • 阿里巴巴集团
Company Short Name
  • Brave Software
  • Google
  • Microsoft
  • Opera Norway
  • The Chromium Authors
File Description
  • ACE-Setup exe
  • Adobe Crash Reporter Service
  • ArmourySocketServer
  • ASUS App Service
  • Autodesk Analytics Client Service
  • Autodesk Desktop SDK
  • AutoIt v3 Script (Beta)
  • AxIns.dll
  • Brave Browser
  • Catalyst® Control Center Launcher
Show More
  • Chromium
  • Container service for CapCut root features.
  • Crash reporting Send Utility, BsSndRpt.exe
  • Creative Cloud UI Helper
  • DDV ATI Graphics Worker
  • DingTalk
  • DolbyDAX2TrayIcon
  • Driver Setup API for Realtek HD Audio
  • EA Installer Cleanup
  • Firefox Software Updater
  • Google Chrome
  • Google Play Games Services Uninstaller
  • HD Audio Background Process
  • igfxCUIService Module
  • igfxEM Module
  • InstallShield (R) 64-bit Setup Engine
  • Intel HD Graphics Drivers for Windows(R)
  • iTunesHelper
  • Java(TM) Web Start Launcher
  • Logicool DX Tweaker Application
  • Logitech DX Tweaker Application
  • McAfee WebAdvisor(service)
  • NVIDIA Container
  • NVIDIA NGX DLISR API
  • NVIDIA ShadowPlay Helper
  • NVRLA
  • OneDrive
  • OneDrive Photos
  • OpenVPN GUI for Windows
  • Opera
  • Opera GX
  • PCUClientBridge x64
  • PowerToys ShortcutGuide
  • PWA Identity Proxy Host
  • RapidCRC Unicode
  • SSH, Telnet and Rlogin client
  • Steam Xbox Driver Utility
  • TODO: <File description>
  • Visual Studio Tools for Office Solution Installer
  • WPBT_with_NoDriver
  • 网易有道翻译
  • 钉钉
File Version
  • V01.00.00.00_01.01.00.02 release
  • Release 0.74 (without embedded help)
  • 148.0.2
  • 146.0.1
  • 145.0.7632.117
  • 145.0.7632.116
  • 144.0.7559.173
  • 144.0
  • 143.0.7499.194
  • 143.0.7499.170
Show More
  • 143.0.7499.169
  • 142.1.84.141
  • 142.1.84.139
  • 142.0.7444.265
  • 142.0.1
  • 142.0
  • 141.1.83.120
  • 141.0.7390.125
  • 141.0.7390.123
  • 140.1.82.166
  • 140.0.7339.186
  • 139.0.7258.156
  • 138.0.7204.251
  • 131.0.2903.86
  • 123.0.6312.123
  • 109.0.5414.168
  • 108.0.5359.215
  • 108.0.5359.125
  • 104.0.5112.102
  • 80.0.3987.162
  • 65.0.1
  • 31.0.101.2135
  • 31.0.101.2130
  • 26.3.312.0
  • 26.026.0209.0004
  • 26.0.720
  • 25.243.1211.0001
  • 25.194.1005.0003
  • 24.0.2510.254
  • 20.3.2504.213
  • 13.0.0.656
  • 12.13.9.1
  • 12.13.7.1
  • 11.251.2.08
  • 11.51.2.16
  • 11.51.0.0
  • 11.0.5.400
  • 10.0.60910.0 built by: VSTO_Rel
  • 8.2.3.251230001
  • 7.8.5.1719
  • 6.15.101.2135
  • 6.15.101.2115
  • 6.15.10.4303
  • 6.8.0.821
  • 5.07.15.00
  • 5.02.114
  • 4.7.0.0
  • 4.5.0.0
  • 4.4.2.0
  • 4.0.06.13
  • 4,1,1,995
  • 3.28.0.412
  • 3.5.0.0
  • 3, 3, 17, 0
  • 3, 3, 1, 0
  • 3, 0, 0, 6
  • 3, 0, 0, 4
  • 2.1.3.0
  • 1.5.11504.0
  • 1.4.0+58
  • 1.2.4923.0
  • 1.1.1.52
  • 1.0.34.0
  • 1.0.0.1
  • 1, 0, 0, 221
  • 1, 0, 0, 0
  • 0.97.2.0
  • 0.8.8.76
  • 0.3.37.0
  • 0.1.20.22
Full Version
  • 11.251.2.08
  • 11.51.2.16
Internal Build Number 202227
Internal Name
  • ACE-Setup.exe
  • AddDrivers.exe
  • ADPClientService.exe
  • AdpSDKUtil.exe
  • AND_KHE_SYMLINK
  • ArmourySocketServer
  • AsusAppService.exe
  • atiw.exe
  • AutoIt3.exe
  • AxIns.dll
Show More
  • BsSndRpt.exe
  • cc_container_service.exe
  • chrome_pwa_launcher
  • Client Application
  • CLIStart
  • Creative Cloud UI Helper.exe
  • CRWindowsClientService.exe
  • DingTalk.exe
  • Dolby DAX2 Tray Icon
  • DXTweak
  • elevation_service_exe
  • Google Play Games Services Uninstaller
  • hydra.exe
  • IGFXCUISERVICE
  • IGFXEM
  • IntelCpHDCPSvc.exe
  • iTunesHelper
  • Java(TM) Web Start Launcher
  • Kernel
  • NgxDlisr
  • notification_helper_exe
  • NvContainer
  • NVRLA GLAM
  • nvsphelper.exe
  • openvpn-gui
  • PCUClientBridge
  • PuTTY
  • PWA Identity Proxy Host
  • RapidCRC
  • RtHDVBgProc.exe
  • RtlUpd
  • ServiceHost Module
  • ShortcutGuide
  • Steam Xbox Driver Utility
  • VSTOInstaller.exe
  • YoudaoDict
Language Build I D 0
Language Id @LANGUAGE_STRING@
Last Change
  • 0000000000000000000000000000000000000000-0000000000000000000000000000000000000000
  • 0a2e5078088fc9f9a29247aaa40af9e7ada8b79f-refs/branch-heads/5112@{#1477}
  • 4f3019d9775ef7c4b29cfea41095d8a0155c6eed-refs/branch-heads/7559@{#4633}
  • 7d28075c6a9ba147e6df449209001258bb82a122-refs/branch-heads/7632@{#3100}
  • 31f8248cdd90acbac59f700b603fed0b5967ca50-refs/branch-heads/6312@{#824}
  • 38bf45887ca5336841cddb4200e6deee32ce45a8
  • 49b2d0624b58899a12132f47ef54b812c5a6dfc4
  • 164b20aab62509dad21fd46383951aeec084ad1e-refs/branch-heads/7499@{#3399}
  • 603c1cb86aff29563721da2a6351c0d08865350d-refs/branch-heads/5359@{#1179}
  • 932ffddafa9ddc65da0b5b1693b3d3492a70893f-refs/branch-heads/5414@{#1594}
Show More
  • 2647fda258705fce2a699977648e614d3e23e4ae
  • 9722f06a26ed9376ee395a4de8c472268d88a4fb-refs/branch-heads/7444@{#4339}
  • 54008792bf952b599e1a7416663711f6a07c8ce3-refs/branch-heads/7204@{#3377}
  • 81613192193ccffe8b499e9ddd97f85f85c3da25-refs/branch-heads/7499@{#3400}
  • c643dfff61ee0c447b89c05001216825c74120ff-refs/branch-heads/7339_150@{#4}
  • d481d06001dcd27831133efb4ac647fb6dd76073-refs/branch-heads/7390@{#2670}
  • dbdb1336cf66d49f25b189868cad563426d4346d
  • de4e5d6e13b995f5e04137970c0e8ec456017467-refs/branch-heads/7632@{#3101}
  • e4e55c5a0eca5760015b84814943625648129d79
  • f2c5dd6138153bb0658091205bd1a1717f16081a-refs/branch-heads/3987@{#1034}
  • f73cd9afd47852a6077a0251008209da950270f4-refs/branch-heads/7499@{#4085}
  • fcf346308f838bc89a3e3270e07f2fca679303ad-refs/branch-heads/7390@{#2668}
Legal Copyright
  • (C) 2016-2022 NVIDIA Corporation. All rights reserved.
  • (C) 2020 NVIDIA Corporation. All rights reserved.
  • (C) NVIDIA Corporation. All rights reserved.
  • 2013 (c) Realtek Semiconductor. All rights reserved.
  • ASUSTeK Computer Inc. All rights reserved.
  • Copyright (c) 1998-2018 Intel Corporation.
  • Copyright (C) 2004 Sebastian Ewert
  • Copyright (C) 2011-2021 Electronic Arts. All rights reserved.
  • Copyright (C) 2016 Realtek Semiconductor Corp.
  • Copyright (C) 2018-2022, NVIDIA CORPORATION. All rights reserved
Show More
  • Copyright (C) 2019
  • Copyright (c) 2020 Flexera. All Rights Reserved.
  • Copyright (C) 2020-2021, NVIDIA CORPORATION. All rights reserved
  • Copyright(c) 2021 Corel Corporation
  • Copyright (C) 2024 Google LLC. All rights reserved.
  • Copyright (C) 2025 Aura Inc. All rights reserved.
  • Copyright (C) 2025 ByteDance. All rights reserved.
  • Copyright (C) 2025 Opera Norway AS. All rights reserved.
  • Copyright (C) 2026 Opera Norway AS. All rights reserved.
  • Copyright (c) Dell Technologies Inc. or its subsidiaries. All Rights Reserved.
  • Copyright (C) Microsoft Corporation. All rights reserved.
  • Copyright (c) SIEMENS AG 2011
  • Copyright (C) Valve Corporation
  • Copyright 2012-2015, Intel Corporation
  • Copyright 2016 The Brave Authors. All rights reserved.
  • Copyright 2019 Google LLC. All rights reserved.
  • Copyright 2020 Adobe.All Rights Reserved.
  • Copyright 2022 Google LLC. All rights reserved.
  • Copyright 2023 Google LLC. All rights reserved.
  • Copyright 2024 Google LLC. All rights reserved.
  • Copyright 2025 Google LLC. All rights reserved.
  • Copyright 2025 The Chromium Authors. All rights reserved.
  • Copyright 2026 Google LLC. All rights reserved.
  • Copyright @LASTCHANGE_YEAR@ The Chromium Authors. All rights reserved.
  • Copyright BugSplat, LLC (C) 2015
  • Copyright Microsoft Corporation. All rights reserved.
  • Copyright © 1997-2020 Simon Tatham.
  • Copyright © 2015
  • Copyright © 2020
  • Copyright © 2024 McAfee, LLC
  • Copyright © 2025 网易公司 Ltd. All rights reserved.
  • DingTalk Copyright@2017. Alibaba Group All rights reserved.
  • License: MPL 2
  • The OpenVPN GUI developers
  • TODO: (c) <Company name>. All rights reserved.
  • © 1999-2008 Logicool Co. Ltd. All rights reserved.
  • © 1999-2008 Logitech. All rights reserved.
  • © 1999-2022 Jonathan Bennett & AutoIt Team
  • © 2000–2025 Apple Inc. All rights reserved.
  • © 2013-2025 Adobe. All rights reserved.
  • © 2015 Advanced Micro Devices, Inc.
  • © 2018 Dolby Laboratories, Inc. All rights reserved.
  • © AntiCheatExpert.com Limited. All Rights Reserved.
  • © ASUSTeK COMPUTER INC. All rights reserved.
  • © Autodesk, Inc. All rights reserved.
  • © Microsoft Corporation. All rights reserved.
  • 钉钉 Copyright@2017. 阿里巴巴集团 All rights reserved.
Legal Trademarks
  • Copyright(c) 2021 Corel Corporation
  • Logicool, the Logicool logo, and other Logicool marks are owned by Logicool and may be registered. All other trademarks are the property of their respective owners.
  • Logitech, the Logitech logo, and other Logitech marks are owned by Logitech and may be registered. All other trademarks are the property of their respective owners.
  • Mozilla
Official Build
  • 0
  • 1
Original Filename
  • ACE-Setup.exe
  • AddDrivers.exe
  • ADPClientService.exe
  • AdpSDKUtil.exe
  • ArmourySocketServer
  • AsusAppService.exe
  • atiw.exe
  • AutoIt3.exe
  • AxIns.dll
  • BsSndRpt.exe
Show More
  • cc_container_service.exe
  • chrome_pwa_launcher.exe
  • CLIStart.exe
  • Creative Cloud UI Helper.exe
  • CRWindowsClientService.exe
  • DingTalk.exe
  • DolbyDAX2TrayIcon.exe
  • DXTweak2.exe
  • elevation_service.exe
  • GooglePlayGamesServicesUninstaller.exe
  • hydra.exe
  • identity_helper.exe
  • IGFXCUISERVICE.EXE
  • IGFXEM.EXE
  • IntelCpHDCPSvc.exe
  • ISBEW64.exe
  • iTunesHelper.exe
  • javaws.exe
  • maintenanceservice.exe
  • ngx-dlisr.exe
  • notification_helper.exe
  • NvContainer.exe
  • NVRLA GLAM
  • nvsphelper.exe
  • OneDrive.App.exe
  • openvpn-gui.exe
  • PCUClientBridge.exe
  • PowerToys.ShortcutGuide.exe
  • PuTTY
  • RapidCRC.exe
  • RtHDVBgProc.exe
  • RtlUpd.EXE
  • ServiceHost.exe
  • steamxboxutil64.exe
  • updater.exe
  • VSTOInstaller.exe
  • YoudaoDict.exe
Product Date 2011-10-17
Product Name
  • Adobe Crash Reporter Service
  • Anti-Cheat Expert
  • ArmourySocketServer
  • ASUS App Service
  • Autodesk Windows Components
  • AutoIt v3 Script (Beta)
  • AxIns.dll
  • Brave Browser
  • BugSplat Crash Report Send Utility
  • Catalyst® Control Center
Show More
  • Chromium
  • Container service for CapCut root features.
  • Corel Common Framework
  • Creative Cloud UI Helper
  • Dell Data Vault
  • DingTalk
  • DolbyDAX2TrayIcon
  • EA Installer Cleanup
  • Firefox
  • FrameView
  • Google Chrome
  • Google Play Games Services
  • HD Audio Background Process
  • Hydra Protocol wrapper.
  • InstallShield
  • Intel(R) Common User Interface
  • Intel HD Graphics Drivers for Windows(R)
  • iTunes
  • Java(TM) Platform SE 8 U51
  • Java(TM) Platform SE 8 U251
  • Logicool Gaming Software
  • Logitech Gaming Software
  • McAfee WebAdvisor
  • Microsoft Edge
  • Microsoft® Visual Studio® 2010
  • NVIDIA App
  • NVIDIA Container
  • NVIDIA GeForce Experience
  • OneDrive
  • OneDrive Photos
  • OpenVPN GUI
  • Opera
  • Opera GX
  • PowerToys
  • PuTTY suite
  • RapidCRC Unicode
  • Realtek HD Auido Update and remove driver Tool
  • Steam Xbox Driver Utility
  • SYMLINK®
  • TODO: <Product name>
  • YoudaoDict
  • 钉钉
Product Short Name
  • Brave
  • Chrome
  • Chromium
  • Opera
  • Opera GX
Product Version
  • V01.00.00.00_01.01.00.02 release
  • Release 0.74
  • gcomp_rel 33231171
  • 148.0.2
  • 146.0.1
  • 145.0.7632.117
  • 145.0.7632.116
  • 144.0.7559.173
  • 144.0
  • 143.0.7499.194
Show More
  • 143.0.7499.170
  • 143.0.7499.169
  • 142.1.84.141
  • 142.1.84.139
  • 142.0.7444.265
  • 142.0.1
  • 142.0
  • 141.1.83.120
  • 141.0.7390.125
  • 141.0.7390.123
  • 140.1.82.166
  • 140.0.7339.186
  • 139.0.7258.156
  • 138.0.7204.251
  • 131.0.2903.86
  • 123.0.6312.123
  • 109.0.5414.168
  • 108.0.5359.215
  • 108.0.5359.125
  • 104.0.5112.102
  • 80.0.3987.162
  • 65.0.1
  • 31.0.101.2135
  • 31.0.101.2130
  • 26.3.312.0
  • 26.026.0209.0004
  • 26.0
  • 25.243.1211.0001
  • 25.194.1005.0003
  • 24.0.2510.254
  • 20.3.2504.213
  • 13.0.0.656
  • 12.13.9.1
  • 12.13.7.1
  • 11.51.0.0
  • 11.0.5.400
  • 10.0.60910.0
  • 8.2.3.251230001
  • 8.0.2510.8
  • 8.0.510.16
  • 7.8.5.1719
  • 6.15.101.2135
  • 6.15.101.2115
  • 6.15.10.4303
  • 6.8.0.821
  • 5.07.15.00
  • 5.02.114
  • 4.7.0.0
  • 4.5.0.0
  • 4.4.2.0
  • 4.0.06.13
  • 4,1,1,0
  • 3.28.0.412
  • 3.5.0.0
  • 3, 3, 17, 0
  • 3, 3, 1, 0
  • 3, 0, 0, 6
  • 3, 0, 0, 4
  • 2.1.3.0
  • 1.5.11504.0
  • 1.4.0+58
  • 1.2.4923.0
  • 1.1.1.52
  • 1.0.34.0
  • 1.0.0.1
  • 1, 0, 0, 221
  • 1, 0, 0, 0
  • 0.97.2.0
  • 0.8.8.76
  • 0.3.37.0
  • 0.1.20.22
Source Control I D
  • 10260034
  • 10335627
Special Build
  • b/build/314b5834-765a-886b-253d-a565f08ade0e
  • b/build/553ac3c1-93eb-a1d7-706d-09bcd57402d5
  • b/build/c53fdb6a-d2ae-ac9c-ab5b-b7f457864f8d
Upstream Version @UPSTREAM_VERSION_NUMBER_STRING@
Website https://github.com/openvpn/openvpn-gui/

File Traits

  • 2+ executable sections
  • Autoit
  • CryptUnprotectData
  • Default Version Info
  • fptable
  • HighEntropy
  • imgui
  • Installer Manifest
  • Installer Version
  • No Version Info
Show More
  • ntdll
  • WriteProcessMemory
  • x64

Block Information

Total Blocks: 1,685
Potentially Malicious Blocks: 7
Whitelisted Blocks: 1,552
Unknown Blocks: 126

Visual Map

0 0 ? ? ? ? 0 1 0 0 0 ? 1 0 ? ? 0 0 0 0 0 0 0 0 0 ? 0 1 0 ? 0 0 0 0 0 ? ? 1 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 ? ? 0 0 0 0 0 0 ? 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? ? 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 ? ? 0 ? 0 1 ? ? ? 0 ? ? 0 ? 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 ? ? 0 1 ? 0 0 ? 0 0 0 0 ? 0 0 1 ? 0 ? ? 0 ? 1 ? ? 0 0 0 0 ? 0 0 0 ? 0 ? ? ? ? 0 0 ? 0 1 1 0 0 ? ? ? ? ? ? ? ? ? 0 0 0 0 0 0 0 0 0 0 0 ? 0 ? 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 ? ? 0 ? 0 0 1 ? ? ? ? 0 0 ? 0 0 0 0 0 ? 0 ? 0 0 0 0 0 ? 0 0 0 0 0 ? ? 0 0 ? ? ? 0 ? ? ? 0 1 ? ? ? 0 0 0 0 0 0 ? 0 0 0 ? 0 0 1 ? 0 0 ? 0 ? ? ? ? ? ? ? ? 0 ? ? ? ? ? ? ? 0 0 0 ? ? ? 0 0 0 ? ? ? ? 0 0 0 ? 0 0 0 0 0 ? 0 0 ? ? 0 0 0 0 1 0 0 1 ? ? 0 ? 0 0 0 0 ? ? ? 1 1 1 ? 0 0 ? ? 1 0 ? 0 ? 1 1 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 1 0 0 0 1 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 1 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 1 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? x x x x x x x
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Agent.UFSI
  • BadIIS.G
  • CobaltStrike.XAA
  • DNSChanger.B
  • Downloader.Agent.N
Show More
  • Exploit.X
  • Injector.KFSA
  • Injector.LJ
  • Rozena.KO

Windows API Usage

Category API
Syscall Use
  • ntdll.dll!NtAccessCheck
  • ntdll.dll!NtAccessCheckByType
  • ntdll.dll!NtAddAtomEx
  • ntdll.dll!NtAlertThreadByThreadId
  • ntdll.dll!NtAlpcConnectPort
  • ntdll.dll!NtAlpcConnectPortEx
  • ntdll.dll!NtAlpcCreatePort
  • ntdll.dll!NtAlpcQueryInformation
  • ntdll.dll!NtAlpcSendWaitReceivePort
  • ntdll.dll!NtAlpcSetInformation
Show More
  • ntdll.dll!NtApphelpCacheControl
  • ntdll.dll!NtAssociateWaitCompletionPacket
  • ntdll.dll!NtClose
  • ntdll.dll!NtConnectPort
  • ntdll.dll!NtCreateEvent
  • ntdll.dll!NtCreateIoCompletion
  • ntdll.dll!NtCreateMutant
  • ntdll.dll!NtCreateSection
  • ntdll.dll!NtCreateThreadEx
  • ntdll.dll!NtCreateTimer
  • ntdll.dll!NtCreateTimer2
  • ntdll.dll!NtCreateWaitCompletionPacket
  • ntdll.dll!NtCreateWorkerFactory
  • ntdll.dll!NtDeleteAtom
  • ntdll.dll!NtDeviceIoControlFile
  • ntdll.dll!NtDuplicateObject
  • ntdll.dll!NtDuplicateToken
  • ntdll.dll!NtFindAtom
  • ntdll.dll!NtFreeVirtualMemory
  • ntdll.dll!NtImpersonateAnonymousToken
  • ntdll.dll!NtMapViewOfSection
  • ntdll.dll!NtNotifyChangeMultipleKeys
  • ntdll.dll!NtOpenDirectoryObject
  • ntdll.dll!NtOpenEvent
  • ntdll.dll!NtOpenFile
  • ntdll.dll!NtOpenKey
  • ntdll.dll!NtOpenKeyEx
  • ntdll.dll!NtOpenProcessToken
  • ntdll.dll!NtOpenProcessTokenEx
  • ntdll.dll!NtOpenSection
  • ntdll.dll!NtOpenSemaphore
  • ntdll.dll!NtOpenThreadToken
  • ntdll.dll!NtOpenThreadTokenEx
  • ntdll.dll!NtProtectVirtualMemory
  • ntdll.dll!NtQueryAttributesFile
  • ntdll.dll!NtQueryDebugFilterState
  • ntdll.dll!NtQueryInformationFile
  • ntdll.dll!NtQueryInformationProcess
  • ntdll.dll!NtQueryInformationThread
  • ntdll.dll!NtQueryInformationToken
  • ntdll.dll!NtQueryKey
  • ntdll.dll!NtQueryLicenseValue
  • ntdll.dll!NtQueryPerformanceCounter
  • ntdll.dll!NtQuerySecurityAttributesToken
  • ntdll.dll!NtQuerySecurityObject
  • ntdll.dll!NtQuerySystemInformation
  • ntdll.dll!NtQuerySystemInformationEx
  • ntdll.dll!NtQueryValueKey
  • ntdll.dll!NtQueryVirtualMemory
  • ntdll.dll!NtQueryVolumeInformationFile
  • ntdll.dll!NtQueryWnfStateData
  • ntdll.dll!NtReadRequestData
  • ntdll.dll!NtReadVirtualMemory
  • ntdll.dll!NtReleaseMutant
  • ntdll.dll!NtReleaseSemaphore
  • ntdll.dll!NtReleaseWorkerFactoryWorker
  • ntdll.dll!NtRequestWaitReplyPort
  • ntdll.dll!NtResumeThread
  • ntdll.dll!NtSetEvent
  • ntdll.dll!NtSetInformationKey
  • ntdll.dll!NtSetInformationProcess
  • ntdll.dll!NtSetInformationThread
  • ntdll.dll!NtSetInformationVirtualMemory
  • ntdll.dll!NtSetInformationWorkerFactory
  • ntdll.dll!NtSetTimer2
  • ntdll.dll!NtSetTimerEx
  • ntdll.dll!NtSubscribeWnfStateChange
  • ntdll.dll!NtTestAlert
  • ntdll.dll!NtTraceControl
  • ntdll.dll!NtUnmapViewOfSection
  • ntdll.dll!NtUnmapViewOfSectionEx
  • ntdll.dll!NtWaitForAlertByThreadId
  • ntdll.dll!NtWaitForMultipleObjects
  • ntdll.dll!NtWaitForSingleObject
  • ntdll.dll!NtWaitForWorkViaWorkerFactory
  • ntdll.dll!NtWaitLowEventPair
  • ntdll.dll!NtWriteFile
  • ntdll.dll!NtWriteVirtualMemory
  • UNKNOWN
  • win32u.dll!NtUserGetKeyboardLayout
  • win32u.dll!NtUserGetThreadState
Other Suspicious
  • SetWindowsHookEx

Trending

Most Viewed

Loading...