Gridinsoft Logo
File Icon

The GearUP-2.56.1-aff435456i.exe (GearUP) File Analysis

Updated 1 day ago
Checked by Malware Check
GearUP-2.56.1-aff435456i.exe

Technical Analysis

File Name GearUP-2.56.1-aff435456i.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.233.174
Database Version 2026-01-09 05:00:16 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
35,311,408
File Size (bytes)
2026-01-09
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
acffe2be6e1e234fc6ab7dc8e37b327a
SHA1
3beec159bd2c25eb4664e4bcb078d77c41bf05ad
SHA256
2c96dc3910c32af6777cb84e40c15f9c7d3813d4c6185245b832706183183b4f
SHA512
a5360a8917c3bda6fd50857dc720dedc62cb94c96968e3befe9d935093195a7c44648ae9ba7d70eadd0984520f4d4eb8cdb3b42018526589da15556a5aa8bb0c
ImpHash
4f1e148ad96f81a089da78e3cb0bdd94

PE Analysis

Basic Information

Icon
Hash: fb6d5a5b25efa1fd3a086dea4fd1d14b
Fuzzy: acafa4b75ea5c545487bad8eee12d111
dHash: 60b468b28eccf871
Image Base 0x00400000
Entry Point 0x005b1763
Compilation Time 2025-12-24 07:38:01
Checksum 0x021bb893 (Actual: 0x021bb893)
OS Version 5.1
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
PDB Path D:\jenkins\jobs\CHANNEL_GEARUP\workspace\gearup-booster\install\install.pdb
Digital Signature OK
Imports 16 libraries
Exports 0 functions
Resources 34 Resources
Sections 5 Sections

Version Information

CompanyName GearUP Co., Ltd.
FileDescription GearUP
FileVersion 2.56.1.476
InternalName install.exe
LegalCopyright Copyright (C) 2022 by GearUP Inc.
OriginalFilename install.exe
PrivateBuild 8accb303de5a4e4d97024635210dfc0813730eba
ProductName GearUP
ProductVersion 2.56.1.476
Translation 0x0409 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 1,926,986 bytes 1,927,168 bytes 6.90 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 3AB6C90FD9F098E2B65B394283617B3E
.rdata 0x001d8000 520,038 bytes 520,192 bytes 6.07 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 9BE49C479CC5BD6B91AF62A10E697ADC
.data 0x00257000 47,616 bytes 23,040 bytes 3.90 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 84D78D01603243657E6684B8C06AA4A2
.rsrc 0x00263000 32,633,100 bytes 32,633,344 bytes 7.99 (Packed/Encrypted) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ A18D460EAA88A7B96391BEB04D1BF430
.reloc 0x02183000 184,940 bytes 185,344 bytes 4.05 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 8F5A77D35C8036B43AE4FE84DEEA4ACD
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 34 (32,631,189 bytes)
Resource Type Count Total Size Percentage
ZIP 1 3,525,942 bytes
10.8%
RT_ICON 16 188,479 bytes
0.6%
RT_MENU 1 80 bytes
0%
RT_DIALOG 1 284 bytes
0%
RT_STRING 7 5,492 bytes
0%
RT_ACCELERATOR 1 16 bytes
0%
RT_RCDATA 3 28,908,667 bytes
88.6%
RT_GROUP_ICON 2 236 bytes
0%
RT_VERSION 1 848 bytes
0%
RT_MANIFEST 1 1,145 bytes
0%

Certificate Chain Analysis

Certificate Information
Product GearUP
Description GearUP
File Version 2.56.1.476
Original Name install.exe
Signing Date 07:38 AM 12/24/2025 (17 days ago)
Verification Status Signed
Signers GearUP Portal Pte. Ltd.; DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1; DigiCert Trusted Root G4; DigiCert
Counter Signers DigiCert SHA256 RSA4096 Timestamp Responder 2025 1; DigiCert Trusted G4 TimeStamping RSA4096 SHA256 2025 CA1; DigiCert Trusted Root G4; DigiCert
Internal Name install.exe
Copyright Copyright (C) 2022 by GearUP Inc.
Certificate Chain Summary
Microsoft Corporation #1 Primary
Validity Period: 2023-10-19 19:51:56 → 2024-10-16 19:51:56
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 03 A5 41 11 E8 F0 7F BE 0B 75 00 00 00 00 03 A5
Microsoft Code Signing PCA 2011 #2 Chain
Validity Period: 2011-07-08 20:59:09 → 2026-07-08 21:09:09
Signature Algorithm: sha256RSA
Serial Number: 61 0E 90 D2 00 00 00 00 00 03
Microsoft Time-Stamp Service #3 Chain
Validity Period: 2023-10-12 19:07:06 → 2025-01-10 19:07:06
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 01 DC C1 E0 8C C2 5F 58 5E 8E 00 01 00 00 01 DC
Microsoft Time-Stamp PCA 2010 #4 Chain
Validity Period: 2021-09-30 18:22:25 → 2030-09-30 18:32:25
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 00 15 C5 E7 6B 9E 02 9B 49 99 00 00 00 00 00 15
DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1 #5 Chain
Validity Period: 2021-04-29 00:00:00 → 2036-04-28 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 08 AD 40 B2 60 D2 9C 4C 9F 5E CD A9 BD 93 AE D9
GearUP Portal Pte. Ltd. #6 Chain
Validity Period: 2025-09-09 00:00:00 → 2028-11-22 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0C EC F3 08 6C F1 F4 4E 9A 18 28 68 90 A9 82 38
DigiCert SHA256 RSA4096 Timestamp Responder 2025 1 #7 Chain
Validity Period: 2025-06-04 00:00:00 → 2036-09-03 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0A 80 EF 18 4B 8D F1 05 82 D1 C4 76 A7 95 74 68
DigiCert Trusted G4 TimeStamping RSA4096 SHA256 2025 CA1 #8 Chain
Validity Period: 2025-05-07 00:00:00 → 2038-01-14 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0D C7 AC 57 05 FF 21 99 2E 40 43 22 0C 3A 49 86
DigiCert Trusted Root G4 #9 Chain
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for
/

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware