Gridinsoft Logo
File Icon

The SLIC_ToolKit_V3.2.EXE (SLIC ToolKit) File Analysis

Updated 1 year ago
Checked by Malware Check
SLIC_ToolKit_V3.2.EXE

Technical Analysis

File Name SLIC_ToolKit_V3.2.EXE
File Type
Win32 EXE
Magic Bytes PE32 executable (GUI) Intel 80386, for MS Windows
SSDEEP Hash
12288:2UXzT24k+IfTBQ6wLUJG2ey6+yGKIFQ29Nh+OCd0F:2UXX2xlQ/LCG2eyiGKIy23h
Scanner Version 1.0.168.174
Database Version 2024-03-11 19:00:37 UTC

Suspicious File Detected

Detected by 22 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
30%
Detection Rate
941,056
File Size (bytes)
22/73
Engines Detected
2024-03-11
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
8e9254489808505a632e5b017bc6df5d
SHA1
3ea4984ca6c1fd530c8d92d47a24efc1f97676e0
SHA256
499040b0c8b21dfdeafebcfe5dae9273e9412364ebb10c9bb51a639bcd8d8d50
SHA512
f5bb3161f36072f93100f5e058df4dc116a0d41b918e9601af90dfa7d40f2a75b4b03b8c0c8fe107276846187603467147ae8f7c8d70098e83ee7e43cc58a599
ImpHash
b4db8ecf3df540445c4dfbb4c9764bb0

Security Engines with Detections (22 of 73)

Bkav
W32.AIDetectMalware Malicious
Elastic
Windows.Generic.Threat Malicious
Skyhigh
BehavesLike.Win32.Generic.dh Malicious
Malwarebytes
Generic.Malware.AI.DDS Malicious
K7AntiVirus
Unwanted-Program ( 004cf3cd1 ) Malicious
K7GW
Unwanted-Program ( 004cf3cd1 ) Malicious
Symantec
ML.Attribute.HighConfidence Malicious
ESET-NOD32
a variant of Win32/Packed.FlyStudio.AA potentially unwanted Malicious
APEX
Malicious Malicious
Trapmine
malicious.high.ml.score Malicious
FireEye
Generic.mg.8e9254489808505a Malicious
Sophos
Generic ML PUA (PUA) Malicious
SentinelOne
Static AI - Malicious PE Malicious
Antiy-AVL
RiskWare/Win32.FlyStudio.a Malicious
Kingsoft
malware.kb.a.915 Malicious
Xcitium
TrojWare.Win32.Agent.OSCF@5rs7jr Malicious
GData
Win32.Trojan.PSE.10V60DG Malicious
Cynet
Malicious (score: 100) Malicious
Cylance
unsafe Malicious
MaxSecure
Trojan.Malware.121218.susgen Malicious
DeepInstinct
MALICIOUS Malicious
CrowdStrike
win/malicious_confidence_70% (D) Malicious
51 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Icon
Hash: e9aea03b37100216df6482d9b5a45eed
Fuzzy: 06728b01fad53d3153e7c60e99ac3aeb
dHash: b66994b292d86996
Image Base 0x00400000
Entry Point 0x004711a5
Compilation Time 2010-02-13 05:30:41
Checksum 0x00000000 (Actual: 0x000eb6fb)
OS Version 5.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
Digital Signature The PE file does not contain a certificate table.
Imports 12 libraries
Exports 41 functions
Resources 69 Resources
Sections 4 Sections

Version Information

FileVersion 3.2.0.0
FileDescription SLIC ToolKit
ProductName SLIC ToolKit
ProductVersion 3.2.0.0
CompanyName DavidXXW Workgroup
LegalCopyright It's a Free Toolkit , DavidXXW .
Comments This tool only for technological research and validating vulnerabilities in the test environment. Does not involve the any copyrighted content, only for research and technological exchanges. Please delete within 24 hours, or for all the consequences arising from your own!
Translation 0x0804 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 647,045 bytes 647,168 bytes 6.57 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 100E79624B6621BF9B952D77182AFF03
.rdata 0x0009f000 167,556 bytes 167,936 bytes 5.25 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 777785941725E2CAC39F585ACB2439F5
.data 0x000c8000 172,776 bytes 55,296 bytes 5.63 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D449466C5ADEDBE0F677E8B52133514C
.rsrc 0x000f3000 69,400 bytes 69,632 bytes 6.82 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 425707448E0928D96D0C749F940B88BE
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 69 (65,268 bytes)
Resource Type Count Total Size Percentage
TEXTINCLUDE 3 370 bytes
0.6%
RT_CURSOR 4 1,104 bytes
1.7%
RT_BITMAP 25 52,118 bytes
79.9%
RT_ICON 4 2,080 bytes
3.2%
RT_MENU 2 656 bytes
1%
RT_DIALOG 12 4,662 bytes
7.1%
RT_STRING 11 2,268 bytes
3.5%
RT_GROUP_CURSOR 3 74 bytes
0.1%
RT_GROUP_ICON 3 74 bytes
0.1%
RT_VERSION 1 1,196 bytes
1.8%
RT_MANIFEST 1 666 bytes
1%

Certificate Chain Analysis

Certificate Information
Product SLIC ToolKit
Description SLIC ToolKit
File Version 3.2.0.0
Copyright It's a Free Toolkit , DavidXXW .
Certificate Chain Summary
GlobalSign Primary Object Publishing CA #1 Primary
Validity Period: 1999-01-28 13:00:00 → 2017-01-27 12:00:00
Signature Algorithm: sha1RSA
Serial Number: 04 00 00 00 00 01 23 9E 0F AC B3
GlobalSign Timestamping CA #2 Chain
Validity Period: 2009-03-18 11:00:00 → 2028-01-28 12:00:00
Signature Algorithm: sha1RSA
Serial Number: 04 00 00 00 00 01 20 19 C1 90 66
GlobalSign Time Stamping Authority #3 Chain
Validity Period: 2009-12-21 09:32:56 → 2020-12-22 09:32:56
Signature Algorithm: sha1RSA
Serial Number: 01 00 00 00 00 01 25 B0 B4 CC 01
Suzhou Ind. Park ShiSuanKeJi Co., Ltd. #4 Chain
Validity Period: 2009-07-06 03:56:35 → 2010-07-06 03:56:35
Signature Algorithm: sha1RSA
Serial Number: 01 00 00 00 00 01 22 4E 66 89 D6
GlobalSign ObjectSign CA #5 Chain
Validity Period: 2004-01-22 10:00:00 → 2017-01-27 10:00:00
Signature Algorithm: sha1RSA
Serial Number: 04 00 00 00 00 01 23 9E 0F AF 24
GlobalSign Root CA #6 Chain
Validity Period: 2006-05-23 17:00:51 → 2016-05-23 17:10:51
Signature Algorithm: sha1RSA
Serial Number: 61 0B 7F 6B 00 00 00 00 00 19

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

The PE file does not contain a certificate table.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
22 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware