| File Name | nc64.exe |
| File Type |
Win32 EXE
|
| Magic Bytes | PE32+ executable (console) x86-64 (stripped to external PDB), for MS Windows |
| SSDEEP Hash |
768:gaGHu/aKUAvRCXA/e6PfVVCJrxg/KKjMozd6jSemG0nf2Fcc5C+qLaVp:CuSzAvRCxmNVCgi+IjNmDO15C+qLaVp
|
| Scanner Version | 1.0.217.174 |
| Database Version | 2025-05-30 00:00:19 UTC |
Detected by 28 security engines - requires caution
| Hash Type | Value | Action |
|---|---|---|
| MD5 |
523613a7b9dfa398cbd5ebd2dd0f4f38
|
|
| SHA1 |
3e92f697d642d68bb766cc93e3130b36b2da2bab
|
|
| SHA256 |
3e59379f585ebf0becb6b4e06d0fbbf806de28a4bb256e837b4555f1b4245571
|
|
| SHA512 |
2ca42e21ebc26233c3822851d9fc82f950186820e10d3601c92b648415eb720f0e1a3a6d9d296497a3393a939a9424c47b1e5eaedfd864f96e3ab8986f6b35b5
|
|
| ImpHash |
567531f08180ab3963b70889578118a3
|
| Image Base | 0x00400000 |
| Entry Point | 0x00401710 |
| Compilation Time | 2011-09-16 22:46:10 |
| Checksum | 0x0000ef39 (Actual: 0x0000ef39) |
| OS Version | 4.0 |
| PEiD Signatures |
PE32+ executable (console) x86-64 (stripped to external PDB), for MS Windows
|
| Digital Signature | OK |
| Imports |
3 libraries
KERNEL32, msvcrt, WSOCK32 |
| Exports | 0 functions |
| Resources | 0 Resources |
| Sections | 7 Sections |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | Characteristics | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
26,112 bytes | 26,112 bytes | 5.90 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_16BYTES
|
E2B1CD470AC63D157E4C65E232C07ADF |
.data |
0x00008000 |
240 bytes | 512 bytes | 1.62 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE|IMAGE_SCN_ALIGN_16BYTES
|
C5407141C3FDBDFF8172A329E9384D18 |
.rdata |
0x00009000 |
4,624 bytes | 5,120 bytes | 5.01 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_ALIGN_16BYTES
|
57E82D7C7851E8632411901E03BA61BE |
.bss |
0x0000b000 |
3,072 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE|IMAGE_SCN_ALIGN_32BYTES
|
D41D8CD98F00B204E9800998ECF8427E |
.idata |
0x0000c000 |
4,400 bytes | 4,608 bytes | 3.91 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE|IMAGE_SCN_ALIGN_4BYTES
|
D2A0F7D3008F5D537376C1A482DCB11E |
.CRT |
0x0000e000 |
104 bytes | 512 bytes | 0.26 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE|IMAGE_SCN_ALIGN_8BYTES
|
58729826ACCB6B45D872788E51AD82C7 |
.tls |
0x0000f000 |
72 bytes | 512 bytes | 0.22 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE|IMAGE_SCN_ALIGN_32BYTES
|
87BD9ED859278120552D9CD12F0AB113 |
| Signing Date | 10:52 PM 09/16/2011 (5012 days ago) |
| Verification Status | Signed |
| Signers | Jernej Simoncic; GlobalSign ObjectSign CA; GlobalSign Primary Object Publishing CA; GlobalSign Root CA - R1 |
| Counter Signers | GlobalSign Time Stamping Authority; GlobalSign Timestamping CA; GlobalSign Root CA - R1 |
04 00 00 00 00 01 23 9E 0F AC B304 00 00 00 00 01 20 19 C1 90 6601 00 00 00 00 01 25 B0 B4 CC 0101 00 00 00 00 01 30 7A 27 87 2D04 00 00 00 00 01 23 9E 0F AF 24✓ This file has been digitally signed and the certificate chain has been verified
OK
Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:
Download Anti-MalwareThis file appears clean, but regular security maintenance is important
