The updater exe (updater 5 4 0 0) Patch My PC File Malware Analysis
Gridinsoft Logo
File Icon

The updater.exe (updater 5.4.0.0) File Analysis

Updated 1 month ago
Checked by Malware Check
updater.exe

Technical Analysis

File Name updater.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.229.174
Database Version 2025-12-03 01:00:34 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
2,141,320
File Size (bytes)
2025-12-03
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
67995ca1c6c7012ef4072de3b0b15344
SHA1
f340c15a03f1926fc0e3294801ca79667aa49e78
SHA256
71d87fdf172a730238378b3e193820be9a3fbaa83b20b7ebacd49fbd30834a99
SHA512
ed6323d19b7603eb2351df7d54895ca34e9efc524b646753bb588aa9a974a11f3603c93d48202b28a91f135bf0f95aa2f5f3bd88bee8a038654d8b5ea1b06b9d
ImpHash
3565752c6b2710b68378f456b762aa98

PE Analysis

Basic Information

Icon
Hash: fedc301784d9304331e6d5d31c350436
Fuzzy: 9e49c3d6acb784152d42a3da2febf3b0
dHash: 9471cc8e96f0f0d4
Image Base 0x00400000
Entry Point 0x004e06c0
Compilation Time 2025-04-08 12:40:51
Checksum 0x00214a14 (Actual: 0x00214a14)
OS Version 6.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
PDB Path C:\ReleaseAI\win\Release\stubs\x86\Updater.pdb
Digital Signature OK
Imports 10 libraries
KERNEL32, USER32, GDI32, SHELL32, ole32, OLEAUT32, gdiplus, SHLWAPI, COMCTL32, UxTheme
Exports 0 functions
Resources 48 Resources
Sections 7 Sections

Version Information

CompanyName Patch My PC
ProductVersion 5.4.0.0
FileVersion 5.4.0.0
ProductName Patch My PC Home Updater
LegalCopyright Copyright (C) 2025 Patch My PC
InternalName updater
OriginalFileName updater.exe
FileDescription updater 5.4.0.0
Translation 0x0809 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 1,258,154 bytes 1,258,496 bytes 6.50 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 9238523F430C5304A1DF485C30D182A9
.rdata 0x00135000 298,924 bytes 299,008 bytes 4.81 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 750E1DC5E13213B6F16DA6C04C021CF4
.data 0x0017e000 14,784 bytes 8,704 bytes 3.88 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D8398E0D0D855B1D1E8B723C028908FA
.didat 0x00182000 328 bytes 512 bytes 2.81 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE B8AF8649BEA8E7E6F67D28272CD5B89C
.fptable 0x00183000 128 bytes 512 bytes 0.00 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE BF619EAC0CDF3F68D496EA9344137E8B
.rsrc 0x00184000 485,424 bytes 485,888 bytes 4.25 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ F720951818145764E57CF58B5F6F9D37
.reloc 0x001fb000 74,996 bytes 75,264 bytes 6.61 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 1EDBA2FA823C1C078099D338E6E6AA82
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 48 (482,823 bytes)
Resource Type Count Total Size Percentage
TYPELIB 1 6,416 bytes
1.3%
RT_ICON 6 377,742 bytes
78.2%
RT_MENU 2 118 bytes
0%
RT_DIALOG 9 3,124 bytes
0.6%
RT_STRING 11 7,642 bytes
1.6%
RT_RCDATA 16 84,990 bytes
17.6%
RT_GROUP_ICON 1 90 bytes
0%
RT_VERSION 1 744 bytes
0.2%
RT_MANIFEST 1 1,957 bytes
0.4%

Certificate Chain Analysis

Certificate Information
Product Patch My PC Home Updater
Description updater 5.4.0.0
File Version 5.4.0.0
Original Name updater.exe
Signing Date 01:58 PM 11/12/2025 (57 days ago)
Verification Status Signed
Signers Patch My PC, LLC; DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1; DigiCert Trusted Root G4; DigiCert
Counter Signers DigiCert SHA256 RSA4096 Timestamp Responder 2025 1; DigiCert Trusted G4 TimeStamping RSA4096 SHA256 2025 CA1; DigiCert Trusted Root G4; DigiCert
Internal Name updater
Copyright Copyright (C) 2025 Patch My PC
Certificate Chain Summary
DigiCert Trusted Root G4 #1 Primary
Validity Period: 2013-08-01 12:00:00 → 2038-01-15 12:00:00
Signature Algorithm: sha384RSA
Serial Number: 05 9B 1B 57 9E 8E 21 32 E2 39 07 BD A7 77 75 5C
DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1 #2 Chain
Validity Period: 2021-04-29 00:00:00 → 2036-04-28 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 08 AD 40 B2 60 D2 9C 4C 9F 5E CD A9 BD 93 AE D9
Patch My PC, LLC #3 Chain
Validity Period: 2024-10-07 00:00:00 → 2027-10-06 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 08 51 93 1F F8 7F 9C B9 C6 B7 B8 A1 5D D8 04 49
DigiCert SHA256 RSA4096 Timestamp Responder 2025 1 #4 Chain
Validity Period: 2025-06-04 00:00:00 → 2036-09-03 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0A 80 EF 18 4B 8D F1 05 82 D1 C4 76 A7 95 74 68
DigiCert Trusted G4 TimeStamping RSA4096 SHA256 2025 CA1 #5 Chain
Validity Period: 2025-05-07 00:00:00 → 2038-01-14 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0D C7 AC 57 05 FF 21 99 2E 40 43 22 0C 3A 49 86
DigiCert Trusted Root G4 #6 Chain
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware