| File Name | testdisk_win.exe |
| File Type |
PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows
|
| Scanner Version | 1.0.229.174 |
| Database Version | 2025-11-19 19:00:22 UTC |
No threats detected by our scanner
| Hash Type | Value | Action |
|---|---|---|
| MD5 |
469159934c92df3babd2ad36f2021605
|
|
| SHA1 |
1eb8db04920382028c8e2f66b3e707e6582bfddf
|
|
| SHA256 |
783ef835666fd2b1efa036b6a555b4bfabde245ac42df7b1a53186d46e47c6de
|
|
| SHA512 |
af75c2d33ee19f93b6f7e5614856b6557676bc806834cc1e9fecee6017cf284633e81f195b7180d18495e3b62ad58365ff8bcfc4b3e52db6739d88095f55d55c
|
|
| ImpHash |
25b87318d2b834505822549b0167577b
|
| Icon |
Hash: cbe9f568a9839b48fab7fa168a0d883f
Fuzzy: 42d0e6e8cbfa4ef080811a93b1d9ce86 dHash: e991a8b0a66d3098 |
| Image Base | 0x00400000 |
| Entry Point | 0x00401000 |
| Compilation Time | 2025-09-21 16:23:09 |
| Checksum | 0x000e485b (Actual: 0x000e485b) |
| OS Version | 4.0 |
| PEiD Signatures |
PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows
|
| Digital Signature | Chain verification from [email protected], CN=Open Source Developer\, Christophe GRENIER, O=Open Source Developer, L=LE PERREUX-SUR-MARNE, ST=ILE DE FRANCE, C=FR (serial:34064927953462066999046785409715031933, sha1:6d2d393fe19a31948adc12ca06908886b3c65b60) failed: The path could not be validated because the end-entity certificate expired 2024-06-15 10:00:27Z |
| Imports |
6 libraries
cygwin1, cygewf-2, cygiconv-2, cygncursesw-10, KERNEL32, cyggcc_s-1 |
| Exports | 0 functions |
| Resources | 6 Resources |
| Sections | 9 Sections |
| CompanyName | CGSecurity |
| ProductName | TestDisk |
| FileDescription | TestDisk |
| InternalName | TestDisk |
| OriginalFilename | testdisk_win.exe |
| Comments | Partition and file recovery utility |
| FileVersion | 7.3 |
| ProductVersion | 7.3 |
| LegalCopyright | Copyright (C) 1998-2024 Christophe GRENIER, et al. |
| Translation | 0x0409 0x04e4 |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | Characteristics | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
596,196 bytes | 596,480 bytes | 5.99 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
E1BB9B01F8158B1131B3857249B32864 |
.data |
0x00093000 |
3,072 bytes | 3,072 bytes | 3.58 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
BCD9535414C8F64B4C507C9AE0D98152 |
.rdata |
0x00094000 |
185,008 bytes | 185,344 bytes | 6.55 (Compressed) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
03AE12DDC62042EC9526C4D602EEB10E |
.buildid |
0x000c2000 |
53 bytes | 512 bytes | 0.58 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
573FF559F4E1CC32F4AE21F62C741DDE |
/4 |
0x000c3000 |
80,024 bytes | 80,384 bytes | 4.94 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
F026381277FCE5F66A7E1E887A7BA841 |
.bss |
0x000d7000 |
61,808 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.idata |
0x000e7000 |
5,940 bytes | 6,144 bytes | 4.97 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
0215E765E3CD1D5C8FAF1A2F57E95F68 |
.rsrc |
0x000e9000 |
10,432 bytes | 10,752 bytes | 5.01 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
162E5C496F253954D226EB0819B851DB |
.reloc |
0x000ec000 |
16,352 bytes | 16,384 bytes | 6.63 (Compressed) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
7F35F5369EB5E4293172AFF89251D340 |
2 section(s) with elevated entropy (≥6.5) - possible compression
| Resource Type | Count | Total Size | Percentage |
|---|---|---|---|
| RT_ICON | 3 | 7,352 bytes | |
| RT_GROUP_ICON | 1 | 48 bytes | |
| RT_VERSION | 1 | 836 bytes | |
| RT_MANIFEST | 1 | 522 bytes |
This file is not digitally signed.
⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources
Chain verification from [email protected], CN=Open Source Developer\, Christophe GRENIER, O=Open Source Developer, L=LE PERREUX-SUR-MARNE, ST=ILE DE FRANCE, C=FR (serial:34064927953462066999046785409715031933, sha1:6d2d393fe19a31948adc12ca06908886b3c65b60) failed: The path could not be validated because the end-entity certificate expired 2024-06-15 10:00:27Z
Recommendation: Verify the file source and ensure it comes from a trusted publisher.
Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:
Download Anti-MalwareThis file appears clean, but regular security maintenance is important
Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware
Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!
