Gridinsoft Logo

The Sora.exe File Analysis

Updated on 2024-08-07 (5 months ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.184.174
DB Version: 2024-08-07 23:00:15

The Sora.exe Is Suspicious

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.

File ai_generator_sora.exe
Checked 2024-08-07 20:25:59
Type Win32 EXE
Threat Trojan
MD5 490865d4972e16ed7a46407af7cfc44c
SHA1 35d1831dfa1d96042238595d71d69f539acadba1
SHA256 73fd02a8b1bdc0b24969a8fbc40471e3cc531d77711cd74ec4358f86b1285c4a
SHA512 08e109b332c842bdfc712c8ab0124471dbddc2ef9d41ea0937b651af0741811cd52c617dfbee2666032dd0870bcde02dffb007b00ec19fdf89fdc0aeaacc62a8
Imphash 4d0fb8dc9ee470058274f448bebbb85f
File Size 37890456 bytes
The Sora.exe File Analysis - Download Now

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

CompanyName Node.js
ProductName Creating video from text
FileDescription Generation video from text
FileVersion 1.1.9.0
ProductVersion 1.1.9.0
LegalCopyright Sora
OriginalFilename Sora.exe
Translation 0x0409 0x04b0

Portable Executable Info

f26da5f0bf4ea26eacbc7db99c6230ea
e9bcb894147631730aff7cd80cb751a4
05b279697961314d
Image Base: 0x140000000
Entry Point: 0x14125e198
Compilation: 2022-07-08 23:42:38
Checksum: 0x0242c901 (Actual: 0x0242c901)
OS Version: 6.0
PDB Path: C:\Users\runneradmin\AppData\Local\Temp\pkg.24e0b2b2d51e47b9dba34c30\node\out\Release\node.pdb
PEiD: PE32+ executable (GUI) x86-64, for MS Windows
Sign: OK
Sections: 7
Imports: dbghelp, WS2_32, IPHLPAPI, PSAPI, USERENV, ADVAPI32, USER32, CRYPT32, bcrypt, KERNEL32, WINMM,
Exports: 17255
Resources: 6

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x012a9f80 0x012aa000 a68bf38c27f1c9777e7256dbf52a2e32 6.46
.rdata 0x012ab000 0x00fe5bf8 0x00fe5c00 3d04457829db3d1d1ed3faa5a7c86ef1 6.21
.data 0x02291000 0x002d87cc 0x00022800 ec94c9183eeea0a1dee0f4e89ca6f8d7 3.86
.pdata 0x0256a000 0x000dfecc 0x000e0000 9e7c8d93702d4532db1795a99911a4b0 6.80
_RDATA 0x0264a000 0x000000f4 0x00000200 ecb4bbe56e47c45a2388a28f6b547d3a 2.91
.rsrc 0x0264b000 0x00003640 0x00022c00 c102de7e0ba5a5eb5a5a318c8572ccbb 3.44
.reloc 0x0264f000 0x000201f4 0x00020200 d5809755ca5d408e8a1e4c3932b51246 5.49

1 comment(s)

ME
Me
🕓 Aug 07, 2024

what it does ? what files and registries are modified and how ? this software was downloaded from facebook via fake SORA ads.

Leave a comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware