Gridinsoft Logo

The PF1800U_dll(Malware (PS005 DLL) File Analysis

Updated 2 months ago
Checked by Malaware Check
PF1800U_dll(Malware

Technical Analysis

File Name PF1800U_dll(Malware
File Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.211.174
Database Version 2025-03-23 01:00:46 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
143,360
File Size (bytes)
2025-03-23
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
e4886d5907cf9a317296842255a3ac9d
SHA1
0604b3d6de76205bc8917caf9c2749bc413ed533
SHA256
6a694bf6344c90e11f961b29239f99be82567d0dc3fcf790f213602d44414f03
SHA512
a71c648f176faed90b36f397ca859d424a2eda1cde40b75fb7223ef7ed2dc2b124a67ed25b0677dd7b4a8125e165d2018ef9aeccbeb7a41285cbedb913394b07
ImpHash
1c04bc320c84ed58deaf7703ced52122

PE Analysis

Basic Information

Image Base 0x10000000
Entry Point 0x10008888
Compilation Time 2005-09-19 05:42:26
Checksum 0x00000000 (Actual: 0x000254cb)
OS Version 4.0
PEiD Signatures PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Digital Signature No valid SignedData structure was found.
Imports 6 libraries
KERNEL32, USER32, GDI32, WINSPOOL, ADVAPI32, COMCTL32
Exports 1 functions
Resources 25 Resources
Sections 5 Sections

Version Information

Comments
CompanyName
FileDescription PS005 DLL
FileVersion 1, 0, 2, 6
InternalName PS005
LegalCopyright Copyright (C) 2002
LegalTrademarks
OriginalFilename PS005.DLL
PrivateBuild
ProductName PS005 Dynamic Link Library
ProductVersion 1, 0, 2, 6
SpecialBuild
Translation 0x0404 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 90,034 bytes 90,112 bytes 6.62 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 36F849DFA15F6F0AB665164B7B15E8DB
.rdata 0x00017000 15,309 bytes 16,384 bytes 4.79 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 0AEC4F1E20C3A864DCB0901A6A1053B4
.data 0x0001b000 21,152 bytes 8,192 bytes 3.74 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 0E1AFDA8C093C8F8507944872E30D9EA
.rsrc 0x00021000 8,416 bytes 12,288 bytes 3.52 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ B10991D3CBCB9A61536EE6929C7ACD09
.reloc 0x00024000 11,974 bytes 12,288 bytes 4.73 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 06D15563D628FE41C313ABC7985C60C7
Entropy Analysis Alert

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 25 (6,978 bytes)
Resource Type Count Total Size Percentage
RT_CURSOR 4 1,104 bytes
15.8%
RT_BITMAP 4 2,380 bytes
34.1%
RT_DIALOG 2 356 bytes
5.1%
RT_STRING 11 2,240 bytes
32.1%
RT_GROUP_CURSOR 3 74 bytes
1.1%
RT_VERSION 1 824 bytes
11.8%

Certificate Chain Analysis

Certificate Information
Product PS005 Dynamic Link Library
Description PS005 DLL
File Version 1, 0, 2, 6
Original Name PS005.DLL
Internal Name PS005
Copyright Copyright (C) 2002

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware