The NosbreakV3 exe Entwell File Malware Analysis
Gridinsoft Logo
File Icon

The NosbreakV3.exe File Analysis

Updated 1 month ago
Checked by Malware Check
NosbreakV3.exe

Technical Analysis

File Name NosbreakV3.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.229.174
Database Version 2025-12-03 02:00:43 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
3,655,216
File Size (bytes)
2025-12-03
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
3f86f6b7673cc973be5b85216214decd
SHA1
a3d8a4461221215c9b893ca09d4c9a60a796843b
SHA256
231234150b850bee1f16f6480598ef5264696660c2edabc094e927d4f8069fc8
SHA512
39d73ea41b6cf4b513a784a6933fff32353d0b8503f8597f1c703a78f2b267d1c815a7cc787db731f82b5cf818f96e23803503db43e5d0f626e2e90cf4249540
ImpHash
b9ce2d37b03fed35c8aa2ce63f47d6cc

PE Analysis

Basic Information

Icon
Hash: e68478756e0d03792899fa29ca186f73
Fuzzy: f4c7de2eca560adde3760aea60fb3dd3
dHash: 4cd8d854e4e4ebc6
Image Base 0x00400000
Entry Point 0x0071d768
Compilation Time 1992-06-19 22:22:17
Checksum 0x00385fd5 (Actual: 0x00380448)
OS Version 4.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
Digital Signature The expected hash does not match the digest in SpcInfo
Imports 16 libraries
Exports 0 functions
Resources 75 Resources
Sections 8 Sections

Version Information

CompanyName Entwell
FileDescription
FileVersion 0.9.3.3201
InternalName
LegalCopyright
LegalTrademarks
OriginalFilename
ProductName
ProductVersion 1.0.0.0
Comments
PrivateBuild
SpecialBuild
Translation 0x0412 0x03b5

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
CODE 0x00001000 3,264,048 bytes 3,264,512 bytes 6.51 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 4D0E7454966F115AA0C1F24E8D27859E
DATA 0x0031e000 66,604 bytes 67,072 bytes 4.46 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 1BEBB92EA4D51D13CA4AF698BE22EEE9
BSS 0x0032f000 1,630,269 bytes 0 bytes 0.00 (Normal) IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D41D8CD98F00B204E9800998ECF8427E
.idata 0x004be000 12,772 bytes 12,800 bytes 5.13 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 48EC6A8CD16B9693237DB424CACC2265
.tls 0x004c2000 16 bytes 0 bytes 0.00 (Normal) IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D41D8CD98F00B204E9800998ECF8427E
.rdata 0x004c3000 24 bytes 512 bytes 0.21 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ E582F463DB732FE0262C27DBFB387A83
.reloc 0x004c4000 184,112 bytes 184,320 bytes 6.76 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ 1A1BF07B588D60AB00BB2D834ED6B3FE
.rsrc 0x004f1000 116,736 bytes 116,736 bytes 4.77 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ B823950798E90793CEB3A1383F8526AD
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 75 (112,239 bytes)
Resource Type Count Total Size Percentage
ANICURSOR 4 33,044 bytes
29.4%
RT_CURSOR 13 21,620 bytes
19.3%
RT_BITMAP 11 4,892 bytes
4.4%
RT_ICON 5 33,928 bytes
30.2%
RT_DIALOG 1 82 bytes
0.1%
RT_STRING 21 14,144 bytes
12.6%
RT_RCDATA 3 2,826 bytes
2.5%
RT_GROUP_CURSOR 13 260 bytes
0.2%
RT_GROUP_ICON 2 82 bytes
0.1%
RT_VERSION 1 720 bytes
0.6%
RT_MANIFEST 1 641 bytes
0.6%

Certificate Chain Analysis

Certificate Information
File Version 0.9.3.3201
Signing Date 07:31 AM 07/27/2023 (896 days ago)
Verification Status The digital signature of the object did not verify.
Signers Entwell Co,.Ltd.; DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1; DigiCert Trusted Root G4
Counter Signers Symantec SHA256 TimeStamping Signer - G3; Symantec SHA256 TimeStamping CA; VeriSign Universal Root Certification Authority
Certificate Chain Summary
DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1 #1 Primary
Validity Period: 2021-04-29 00:00:00 → 2036-04-28 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 08 AD 40 B2 60 D2 9C 4C 9F 5E CD A9 BD 93 AE D9
Entwell Co,.Ltd. #2 Chain
Validity Period: 2022-08-16 00:00:00 → 2025-08-14 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 03 CC 3B 28 A8 6D 24 CE 05 8D BD 74 82 46 34 FC
Symantec SHA256 TimeStamping CA #3 Chain
Validity Period: 2016-01-12 00:00:00 → 2031-01-11 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 7B 05 B1 D4 49 68 51 44 F7 C9 89 D2 9C 19 9D 12
Symantec SHA256 TimeStamping Signer - G3 #4 Chain
Validity Period: 2017-12-23 00:00:00 → 2029-03-22 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 7B D4 E5 AF BA CC 07 3F A1 01 23 04 22 41 4D 12

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

The expected hash does not match the digest in SpcInfo

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware