Gridinsoft Logo
File Icon

The DiscordOverlay64.exe File Analysis

Updated 5 minutes ago
Checked by Malware Check
DiscordOverlay64.exe

Technical Analysis

File Name DiscordOverlay64.exe
File Type
Win32 EXE
Magic Bytes PE32+ executable (GUI) x86-64, for MS Windows
SSDEEP Hash
12288:/qccXOuPCDXgGgGwemuGE8dET75FidDsmCnsUvuf21ZrB:/qB+uPCDpw5PEGET75FiBsnHvn9
Scanner Version 1.0.220.174
Database Version 2025-07-16 11:00:22 UTC

Suspicious File Detected

Detected by 28 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
39%
Detection Rate
958,464
File Size (bytes)
28/71
Engines Detected
2025-07-16
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
3f93a230cb47e4be2ad598c055f49e88
SHA1
044ded2e166f374c59fc7c0a31296855315605ba
SHA256
2f1aca16a34231ded6b83e67f2d1a196095115713475d593d46ab596882204af
SHA512
981aaec0d24820fe9705bd34b32a0e3ae7fdbec793ba50f1cccd383f373dbead7bde66140d377bde21143bea274d948ab4a1ce820828629537df886e9cf884e7
ImpHash
1bee36c26013fbfd25b4088e0b7168b1

Security Engines with Detections (28 of 71)

Lionic
Trojan.Win32.Generic.4!c Malicious
AVG
FileRepMalware [Misc] Malicious
Elastic
malicious (high confidence) Malicious
MicroWorld-eScan
Gen:Variant.Cerbu.262538 Malicious
CTX
exe.trojan.agen Malicious
CAT-QuickHeal
Trojan.Agent Malicious
ALYac
Gen:Variant.Cerbu.262538 Malicious
Malwarebytes
Malware.AI.4249852036 Malicious
CrowdStrike
win/malicious_confidence_60% (W) Malicious
Symantec
ML.Attribute.HighConfidence Malicious
ESET-NOD32
a variant of Win64/GameHack_AGen.AAX potentially unsafe Malicious
Paloalto
generic.ml Malicious
BitDefender
Gen:Variant.Cerbu.262538 Malicious
Avast
FileRepMalware [Misc] Malicious
Rising
[email protected] (RDML:+92XkgFaSzdWq94BrYHLGA) Malicious
Emsisoft
Gen:Variant.Cerbu.262538 (B) Malicious
VIPRE
Gen:Variant.Cerbu.262538 Malicious
McAfeeD
ti!2F1ACA16A342 Malicious
GData
Gen:Variant.Cerbu.262538 Malicious
Varist
W64/ABTrojan.BLBC-4048 Malicious
Arcabit
Trojan.Cerbu.D4018A Malicious
Google
Detected Malicious
Cylance
Unsafe Malicious
Panda
Trj/Chgt.AD Malicious
TrellixENS
Artemis!3F93A230CB47 Malicious
MaxSecure
Trojan.Malware.324995110.susgen Malicious
Fortinet
Adware/GameHack_AGen Malicious
DeepInstinct
MALICIOUS Malicious
43 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Icon
Hash: 34a0d3c639d453713904f075046fea32
Fuzzy: 11eab7dc7ee7f6246ef6ffead50cbee3
dHash: 942b69d4d4cc4db2
Image Base 0x140000000
Entry Point 0x14008339c
Compilation Time 2025-07-08 17:01:15
Checksum 0x00000000 (Actual: 0x000ee536)
OS Version 6.0
PEiD Signatures PE32+ executable (GUI) x86-64, for MS Windows
PDB Path C:\Users\alens\Desktop\programs\school project\new\cracked\DiscordOverlay64.pdb
Digital Signature No valid SignedData structure was found.
Imports 21 libraries
Exports 2 functions
Resources 11 Resources
Sections 6 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 543,763 bytes 544,256 bytes 6.51 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 3E3040E4ED63B900D45B700BB788C9BA
.rdata 0x00086000 212,720 bytes 212,992 bytes 6.38 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ DD87FBFB4111DF56E063074819FA90FB
.data 0x000ba000 5,240 bytes 3,072 bytes 3.76 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE F183567EAACB1A1D962AB74CA464AC44
.pdata 0x000bc000 22,548 bytes 23,040 bytes 5.89 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 39F3F99738B9A1C3822BC697224A508F
.rsrc 0x000c2000 172,840 bytes 173,056 bytes 3.31 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ DB66C12E389851F9654838DA78B4BAA3
.reloc 0x000ed000 904 bytes 1,024 bytes 4.91 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ C0C88B77A2639EA4F791E510369293E1
Entropy Analysis Alert

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 11 (172,208 bytes)
Resource Type Count Total Size Percentage
RT_ICON 9 171,684 bytes
99.7%
RT_GROUP_ICON 1 132 bytes
0.1%
RT_MANIFEST 1 392 bytes
0.2%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
28 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware