| File Name | liverhelperV2k.exe |
| File Type |
PE32+ executable (console) x86-64, for MS Windows
|
| Scanner Version | 1.0.228.174 |
| Database Version | 2025-11-05 18:00:25 UTC |
No threats detected by our scanner
| Hash Type | Value | Action |
|---|---|---|
| MD5 |
cfaee27e2cc934014b3fe7bb5379577a
|
|
| SHA1 |
180b93ffda8b437c0b2c3269705faa1cb6da1b09
|
|
| SHA256 |
754048ceb8646bb3e96ac98aee0be894ae07da83776a747b38d9c739bfaf4650
|
|
| SHA512 |
d26da64ca7155dfd16a4cecd193fea0a9e308b813d905fe1fb6b27a9241f0e8a3b3978eff026419dcdfbcb2e0fe3661e95ffbce375b7c5f067466a6763e39e40
|
|
| ImpHash |
a7cd75350ce0abfa86e4a266372caa00
|
| Image Base | 0x140000000 |
| Entry Point | 0x140986f74 |
| Compilation Time | 2025-03-07 04:51:10 |
| Checksum | 0x00000000 (Actual: 0x00ea5264) |
| OS Version | 6.0 |
| PEiD Signatures |
PE32+ executable (console) x86-64, for MS Windows
|
| PDB Path | C:\Users\Mouek\Desktop\onefile\Myrebuild.pdb |
| Digital Signature | No valid SignedData structure was found. |
| Imports | 20 libraries |
| Exports | 1 functions |
| Resources | 1 Resources |
| Sections | 14 Sections |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | Characteristics | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
10,135,083 bytes | 10,135,552 bytes | 6.77 (Compressed) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
7CDB3AC0ED0F428C0BF1D4FCBBF7C84D |
IPPCODE |
0x009ac000 |
956,355 bytes | 956,416 bytes | 6.46 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
679EC1076E4189FBFE67DA5E31E43B65 |
.rdata |
0x00a96000 |
3,285,600 bytes | 3,286,016 bytes | 6.05 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
E6DFF1F96EB01563B4223C964E4B2A8E |
.data |
0x00db9000 |
327,344 bytes | 203,264 bytes | 2.93 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
4C20C54ECAA472987AD18F402F9AF33D |
.pdata |
0x00e09000 |
195,756 bytes | 196,096 bytes | 6.45 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
5BD884530861A2949AEEA29E221C19B5 |
.nv_fatb |
0x00e39000 |
32,192 bytes | 32,256 bytes | 5.56 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
366A08653E462D412B067DA94E62FEA2 |
.nvFatBi |
0x00e41000 |
48 bytes | 512 bytes | 0.35 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
ED5F5683711FD13CC719F24AF81FEC5B |
IPPDATA |
0x00e42000 |
15,232 bytes | 15,360 bytes | 2.40 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
6392C2A92CA584A92412E2CCC27E5474 |
.debug_a |
0x00e46000 |
705 bytes | 1,024 bytes | 3.31 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
5E7CB8424FFF453DC2E5022B76008BFB |
.debug_i |
0x00e47000 |
1,242 bytes | 1,536 bytes | 3.74 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
5E5198ED93E8951B34DA43DD2EB3135B |
.debug_s |
0x00e48000 |
426,030 bytes | 426,496 bytes | 4.98 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
3A9A6ED83BF3CB568136381D26F36FF3 |
.debug_l |
0x00eb1000 |
7,235 bytes | 7,680 bytes | 5.61 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
9A29343AC4A560C2060BDB2D77A7F6F2 |
.rsrc |
0x00eb3000 |
480 bytes | 512 bytes | 4.71 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
F8442521C4CDF008939CF99741106CC9 |
.reloc |
0x00eb4000 |
26,952 bytes | 27,136 bytes | 5.47 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
605C7022F7ED244846A242B48CC9504E |
1 section(s) with elevated entropy (≥6.5) - possible compression
| Resource Type | Count | Total Size | Percentage |
|---|---|---|---|
| RT_MANIFEST | 1 | 381 bytes |
This file is not digitally signed.
⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources
No valid SignedData structure was found.
Recommendation: Verify the file source and ensure it comes from a trusted publisher.
Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:
Download Anti-MalwareThis file appears clean, but regular security maintenance is important
Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware
Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!
