Online Virus Checker | v.1.0.191.174 |
DB Version: | 2024-09-26 23:00:24 |
Trojan Agent is malicious software that masquerades as legitimate files or programs to carry out various harmful actions on infected computers, such as data theft or remote control by cybercriminals.
File | CMLauncher.exe |
Checked | 2024-09-26 20:47:17 |
MD5 | 6eb5bd5c5c219d80cf35268b21141b7d |
SHA1 | eb9eab739f70258c1c5078740836749f86d0433a |
SHA256 | 507bb3c962c233257999cb65352cec684b7dd611f689eca43c8db4452c84f596 |
SHA512 | 9ede414f6bf8937065c44b75bf3139aac76bab3ba3e1006d25703d3469c07a87112e59c1b277adb1214790c61bdc93f566429b0de0653400d077834d46a3ae94 |
Imphash | 79fd65f332ce716896a6cf17170e092e |
File Size | 15474608 bytes |
Gridinsoft has the capability to identify and eliminate Adware.Win32.Agent.cl without requiring further user intervention.
LegalCopyright | ClientMod (C) 2024 |
ProductName | ClientMod Launcher |
ProductVersion | 1.4.5 |
FileVersion | 1.4.5 |
Translation | 0x0409 0x04b0 |
1fad46a22d2214ac75ed19f037a71821 6869e21d0cbc201e6acc930042b6135e e89c9ad5e5baccc8 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x00914edd |
Compilation: | 2024-01-28 12:11:15 |
Checksum: | 0x00ec6db1 (Actual: 0x00ecbc06) |
OS Version: | 6.0 |
PDB Path: | Z:\_SOURCE_CODE\ClientModLauncher\Launcher\Release\CMLauncher.pdb |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
Sign: | Chain verification from CN=ClientModGame (serial:126250232860106813693179804450808953640, sha1:b0ed53cd87f9e2bc51c6d202b7f6cfe2acdf953e) failed: The X.509 certificate provided is self-signed - "Common Name: ClientModGame" |
Sections: | 7 |
Imports: | SHLWAPI, imagehlp, ntdll, IMM32, WINMM, VERSION, WS2_32, USER32, KERNEL32, GDI32, MSWSOCK, dbghelp, ole32, OLEAUT32, MSIMG32, WINSPOOL, ADVAPI32, SHELL32, UxTheme, WININET, gdiplus, OLEACC, bcrypt, CRYPT32, IPHLPAPI, WLDAP32, |
Exports: | 3 |
Resources: | 16 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
---|---|---|---|---|---|
.text | 0x00010000 | 0x00a2d080 | 0x00a2d200 | 5d061ac4f369a0556a22e433135166c4 | 6.67 |
.rdata | 0x00a40000 | 0x00358d86 | 0x00358e00 | 419e91be79539e03f4e007a3dea276b4 | 6.67 |
.data | 0x00da0000 | 0x000b0c7c | 0x00090400 | 083bfa053cb765fcd5560db05dfe93e2 | 7.48 |
.cdata | 0x00e60000 | 0x00000204 | 0x00000400 | dcda1710f7666849ebc25103ccee15b5 | 2.53 |
_RDATA | 0x00e70000 | 0x00002608 | 0x00002800 | 5c2d75c9d32c819a368ee0e85fc4c392 | 6.08 |
.rsrc | 0x00e80000 | 0x00032778 | 0x00032800 | 2bb690f2bf7b5456d4bf2a81a92e92e9 | 5.37 |
.reloc | 0x00ec0000 | 0x00075c34 | 0x00075e00 | 72f8e3d9f4c449091ee5cfaa681b8af7 | 6.59 |