The cs x86 64 pc win32 exe File Malware Analysis

The cs-x86_64-pc-win32.exe File Analysis

Updated 8 months ago

Checked by Malware Check

cs-x86_64-pc-win32.exe

Hash Type	Value	Action
MD5	518cc9f3aba001ebb414fdb2b5d77ad0
SHA1	3f5e21813918d55da6f028f1a6b4299e9264e52d
SHA256	5efe0c12da13bd9138d41d9d0e2d5e2c030e81dd5cd29e0d1aa64c01d28541d2
SHA512	2e1cbbd5edc2cd8b9a2c41ea9171fbaceebf9efe6c07d322611bf5cd69f60a111713749b3853e2a0be3797326a881e278b9deac2a19f9b0685f132fb72b50c48
ImpHash	85fe79ca82112bafd552fffb6c00fbc2

Hash Type

Value

Action

MD5

518cc9f3aba001ebb414fdb2b5d77ad0

SHA1

3f5e21813918d55da6f028f1a6b4299e9264e52d

SHA256

5efe0c12da13bd9138d41d9d0e2d5e2c030e81dd5cd29e0d1aa64c01d28541d2

SHA512

2e1cbbd5edc2cd8b9a2c41ea9171fbaceebf9efe6c07d322611bf5cd69f60a111713749b3853e2a0be3797326a881e278b9deac2a19f9b0685f132fb72b50c48

ImpHash

85fe79ca82112bafd552fffb6c00fbc2

PE Analysis

Basic Information

▼

Image Base	`0x140000000`
Entry Point	`0x1420d801c`
Compilation Time	2025-03-25 20:52:20
Checksum	0x00000000 (Actual: 0x0483cb91)
OS Version	6.0
PEiD Signatures	`PE32+ executable (console) x86-64, for MS Windows`
Digital Signature	No valid SignedData structure was found.
Imports	24 libraries
Exports	39 functions
Resources	0 Resources
Sections	7 Sections

PE Sections

▼

Name	Virtual Address	Virtual Size	Raw Size	Entropy	Characteristics	MD5
`.text`	`0x00001000`	34,440,660 bytes	34,443,264 bytes	5.97 (Normal)	`IMAGE_SCN_CNT_CODE\|IMAGE_SCN_MEM_EXECUTE\|IMAGE_SCN_MEM_READ`	`AE94D3C5999645856931C783FA7F23E3`
`.rdata`	`0x020da000`	50,688 bytes	53,248 bytes	6.02 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ`	`06323301BE4C14A6676E8DEDC5FFDB45`
`.data`	`0x020e7000`	9,864 bytes	8,192 bytes	3.75 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`E1A567D70AD57C87902AED19FCAAEFC1`
`.pdata`	`0x020ea000`	5,520 bytes	8,192 bytes	4.63 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ`	`76EF4A93CE9195220DF15665B5D9097D`
`.rodata`	`0x020ec000`	20,408 bytes	20,480 bytes	7.14 (Compressed)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ`	`8B1A9744BB3F6DB12D09D40FA6045499`
`.svm_hea`	`0x020f1000`	40,673,280 bytes	40,673,280 bytes	5.54 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ`	`DB88F2DBF6A2FC679B6097CCF0A5A8EB`
`.reloc`	`0x047bb000`	469,196 bytes	471,040 bytes	5.49 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_DISCARDABLE\|IMAGE_SCN_MEM_READ`	`7A05787BF733CEE44515CA83D7394E6E`

Entropy Analysis Alert

1 section(s) with elevated entropy (≥6.5) - possible compression

Certificate Chain Analysis

▼

Certificate Information

Certificate Chain Summary

Chambers of Commerce Root - 2008 #1 Primary

Validity Period: 2008-08-01 12:29:50 → 2038-07-31 12:29:50

Signature Algorithm: sha1RSA

Serial Number: A3 DA 42 7E A4 B1 AE DA

Global Chambersign Root - 2008 #2 Chain

Validity Period: 2008-08-01 12:31:40 → 2038-07-31 12:31:40

Signature Algorithm: sha1RSA

Serial Number: C9 CD D3 E9 D5 7D 23 CE

QuoVadis Root CA 3 #3 Chain

Validity Period: 2006-11-24 19:11:23 → 2031-11-24 19:06:44

Signature Algorithm: sha1RSA

Serial Number: 05 C6

Certigna Root CA #4 Chain

Validity Period: 2013-10-01 08:32:27 → 2033-10-01 08:32:27

Signature Algorithm: sha256RSA

Serial Number: CA E9 1B 89 F1 55 03 0D A3 E6 41 6D C4 E3 A6 E1

Entrust Root Certification Authority - G4 #5 Chain

Validity Period: 2015-05-27 11:11:16 → 2037-12-27 11:41:16

Signature Algorithm: sha256RSA

Serial Number: D9 B5 43 7F AF A9 39 0F 00 00 00 00 55 65 AD 58

Hellenic Academic and Research Institutions RootCA 2015 #6 Chain

Validity Period: 2015-07-07 10:11:21 → 2040-06-30 10:11:21

Signature Algorithm: sha256RSA

Serial Number: 00

ANF Secure Server Root CA #7 Chain

Validity Period: 2019-09-04 10:00:38 → 2039-08-30 10:00:38

Signature Algorithm: sha256RSA

Serial Number: 0D D3 E3 BC 6C F9 6B B1

Izenpe.com #8 Chain

Validity Period: 2007-12-13 13:08:28 → 2037-12-13 08:27:25

Signature Algorithm: sha256RSA

Serial Number: B0 B7 5A 16 48 5F BF E1 CB F5 8B D7 19 E6 7D

SSL.com EV Root Certification Authority RSA R2 #9 Chain

Validity Period: 2017-05-31 18:14:37 → 2042-05-30 18:14:37

Signature Algorithm: sha256RSA

Serial Number: 56 B6 29 CD 34 BC 78 F6

SSL.com Root Certification Authority RSA #10 Chain

Validity Period: 2016-02-12 17:39:39 → 2041-02-12 17:39:39

Signature Algorithm: sha256RSA

Serial Number: 7B 2C 9B D3 16 80 32 99

USERTrust RSA Certification Authority #11 Chain

Validity Period: 2010-02-01 00:00:00 → 2038-01-18 23:59:59

Signature Algorithm: sha384RSA

Serial Number: 01 FD 6D 30 FC A3 CA 51 A8 1B BC 64 0E 35 03 2D

COMODO RSA Certification Authority #12 Chain

Validity Period: 2010-01-19 00:00:00 → 2038-01-18 23:59:59

Signature Algorithm: sha384RSA

Serial Number: 4C AA F9 CA DB 63 6F E0 1F F7 4E D8 5B 03 86 9D

Trustwave Global Certification Authority #13 Chain

Validity Period: 2017-08-23 19:34:12 → 2042-08-23 19:34:12

Signature Algorithm: sha256RSA

Serial Number: 05 F7 0E 86 DA 49 F3 46 35 2E BA B2

Certum Trusted Network CA 2 #14 Chain

Validity Period: 2011-10-06 08:39:56 → 2046-10-06 08:39:56

Signature Algorithm: sha512RSA

Serial Number: 21 D6 D0 4A 4F 25 0F C9 32 37 FC AA 5E 12 8D E9

Hongkong Post Root CA 3 #15 Chain

Validity Period: 2017-06-03 02:29:46 → 2042-06-03 02:29:46

Signature Algorithm: sha256RSA

Serial Number: 08 16 5F 8A 4C A5 EC 00 C9 93 40 DF C4 C6 AE 23 B8 1C 5A A4

✓ This file has been digitally signed and the certificate chain has been verified

The signature ensures file integrity and authenticity from the publisher
Timestamping proves when the signature was applied

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

File Name	cs-x86_64-pc-win32.exe
File Type	PE32+ executable (console) x86-64, for MS Windows
Scanner Version	1.0.211.174
Database Version	2025-03-29 01:01:27 UTC

The cs-x86_64-pc-win32.exe File Analysis

Technical Analysis

Clean File

Scan Another File

File Identification

PE Analysis

Basic Information

PE Sections

Entropy Analysis Alert

Certificate Chain Analysis

Certificate Information

Certificate Chain Summary

Certificate Verification Status

Remember: This is Result of Online Virus Scanner

Keep Your System Protected

Leave a Comment

Gridinsoft Anti-Malware