Gridinsoft Logo
File Icon

The Shadowpay-App.exe (Market helper for ShadowPay) File Analysis

Updated 1 month ago
Checked by Malaware Check
Shadowpay-App.exe

Technical Analysis

File Name Shadowpay-App.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
Scanner Version 1.0.215.174
Database Version 2025-04-25 11:00:25 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
46,949,833
File Size (bytes)
2025-04-25
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
8972b57438473c2661ebd59a75cf72fb
SHA1
17998137cd08e011111195b8ee2d4c133ace1614
SHA256
3df5a98eafccad4bde6f00d86cd69a661a67903f9d422c12216534036bfd09e8
SHA512
c8ec5393b72dd0fefffb6ffdde34d157f986771adc2a1814a17d34a1600428ed4682434736be38571bf0ea9ec7b0631948c9f62fff0a7a78cd20faa064a6bc3a
ImpHash
b34f154ec913d2d2c435cbd644e91687

PE Analysis

Basic Information

Icon
Hash: ededff98662a85c64089ca7bf8a7f906
Fuzzy: 06d127e552b00921f96d8446e5a454bb
dHash: 71c08cf8d8dcc870
Image Base 0x00400000
Entry Point 0x0040338f
Compilation Time 2018-01-30 03:58:52
Checksum 0x00000000 (Actual: 0x02cca4e7)
OS Version 4.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
Digital Signature No valid SignedData structure was found.
Imports 7 libraries
KERNEL32, USER32, GDI32, SHELL32, ADVAPI32, COMCTL32, ole32
Exports 0 functions
Resources 28 Resources
Sections 5 Sections

Version Information

CompanyName Dmitry
FileDescription Market helper for ShadowPay
FileVersion 0.6.5
LegalCopyright Copyright © 2025 Dmitry
ProductName Shadowpay-App
ProductVersion 0.6.5
Translation 0x0409 0x04e4

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 26,151 bytes 26,624 bytes 6.45 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 2DF06693054D4889A2DB11A8FE1A5A85
.rdata 0x00008000 5,274 bytes 5,632 bytes 5.01 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 966A3835FD2D9407261AE78460C26DCC
.data 0x0000a000 462,840 bytes 1,536 bytes 4.04 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE DB8F31A08A2242D80C29E1F9500C6527
.ndata 0x0007b000 1,163,264 bytes 0 bytes 0.00 (Normal) IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D41D8CD98F00B204E9800998ECF8427E
.rsrc 0x00197000 22,896 bytes 23,040 bytes 5.45 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 6C61ECC9A073ACAF7961C560014D53D6

Resource Analysis

Total Resources: 28 (21,355 bytes)
Resource Type Count Total Size Percentage
RT_ICON 7 13,784 bytes
64.5%
RT_DIALOG 18 5,808 bytes
27.2%
RT_GROUP_ICON 1 104 bytes
0.5%
RT_VERSION 1 600 bytes
2.8%
RT_MANIFEST 1 1,059 bytes
5%

Certificate Chain Analysis

Certificate Information
Product Shadowpay-App
Description Market helper for ShadowPay
File Version 0.6.5
Copyright Copyright © 2025 Dmitry

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware