Gridinsoft Logo
File Icon

The plutonium.exe (Plutonium.Updater.App) File Analysis

Updated 19 days ago
Checked by Malaware Check
plutonium.exe

Technical Analysis

File Name plutonium.exe
File Type
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Scanner Version 1.0.216.174
Database Version 2025-05-18 04:00:44 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
4,863,736
File Size (bytes)
2025-05-18
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
72cb7c6d98e9e47274733825c9176679
SHA1
8681469349254c5203a7f9a189833d22a14f5cd9
SHA256
85d1d1ca4d5881d9b98928c2006fb0eec9655e2705fe74088e6f974a19703f0f
SHA512
d18d306ca9a311df1a96244ecc67a3e61ffc8b9b465a1301263e11d500cc2f38847e922c57d4a3321196d6ceb32310113d7d790b4dfb2c05c3ff1e2af26dc708
ImpHash
f34d5f2d4577ed6d9ceec516c1f5a744

PE Analysis

Basic Information

Icon
Hash: e2ea175d761daab99965d68b91de1358
Fuzzy: e1dd1764540caecd087c650bb77990c8
dHash: 863369616169338e
Image Base 0x00400000
Entry Point 0x0089adde
Compilation Time 2097-01-09 15:42:18
Checksum 0x004ae289 (Actual: 0x004ae289)
OS Version 4.0
PEiD Signatures PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
PDB Path C:\GitLab-Runner\builds\BD1_GyXC\0\core\updater\Plutonium.Updater.App\obj\Release\net48\Plutonium.Updater.App.pdb
Digital Signature Chain verification from CN=Plutonium Project, OU=www.plutonium.pw, [email protected], O=Plutonium Project (serial:136920179502225401308041345419552790655, sha1:090c29cd9818f10d4ad022ccdd475517f6a53ed9) failed: Unable to build a validation path for the certificate "Common Name: Plutonium Project, Organizational Unit: www.plutonium.pw, Email Address: [email protected], Organization: Plutonium Project" - no issuer matching "Common Name: Plutonium Root Certificate Authority, Organizational Unit: www.plutonium.pw, Organization: Plutonium Project" was found
Imports 1 libraries
mscoree
Exports 0 functions
Resources 7 Resources
Sections 3 Sections

Version Information

Translation 0x0000 0x04b0
CompanyName Plutonium.Updater.App
FileDescription Plutonium.Updater.App
FileVersion 1.0.221.0
InternalName Plutonium.Updater.App.exe
LegalCopyright
OriginalFilename Plutonium.Updater.App.exe
ProductName Plutonium.Updater.App
ProductVersion 1.0.221-25b01eea
Assembly Version 1.0.221.0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00002000 4,820,452 bytes 4,820,480 bytes 8.00 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 20FB4C8B0D34BE4CD30B941354778533
.rsrc 0x0049c000 33,832 bytes 34,304 bytes 3.90 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ D341131393532B5F638FFAE2FAA533DA
.reloc 0x004a6000 12 bytes 512 bytes 0.10 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 35DBAD4EC59952AF1BE9CDE27EC4C5FB
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

Resource Analysis

Total Resources: 7 (33,376 bytes)
Resource Type Count Total Size Percentage
RT_ICON 4 31,968 bytes
95.8%
RT_GROUP_ICON 1 62 bytes
0.2%
RT_VERSION 1 856 bytes
2.6%
RT_MANIFEST 1 490 bytes
1.5%

Certificate Chain Analysis

Certificate Information
Product Plutonium.Updater.App
Description Plutonium.Updater.App
File Version 1.0.221.0
Original Name Plutonium.Updater.App.exe
Verification Status A certificate chain could not be built to a trusted root authority.
Internal Name Plutonium.Updater.App.exe
Certificate Chain Summary
Plutonium Project #1 Primary
Validity Period: 2022-03-20 13:37:43 → 2023-03-20 13:47:44
Signature Algorithm: sha256RSA
Serial Number: 67 01 DE 0B EC 21 4F B3 42 43 82 0B F3 78 98 7F
DigiCert Timestamp 2022 - 2 #2 Chain
Validity Period: 2022-09-21 00:00:00 → 2033-11-21 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0C 4D 69 72 4B 94 FA 3C 2A 4A 3D 29 07 80 3D 5A
DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA #3 Chain
Validity Period: 2022-03-23 00:00:00 → 2037-03-22 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 07 36 37 B7 24 54 7C D8 47 AC FD 28 66 2A 5E 5B
DigiCert Trusted Root G4 #4 Chain
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

Chain verification from CN=Plutonium Project, OU=www.plutonium.pw, [email protected], O=Plutonium Project (serial:136920179502225401308041345419552790655, sha1:090c29cd9818f10d4ad022ccdd475517f6a53ed9) failed: Unable to build a validation path for the certificate "Common Name: Plutonium Project, Organizational Unit: www.plutonium.pw, Email Address: [email protected], Organization: Plutonium Project" - no issuer matching "Common Name: Plutonium Root Certificate Authority, Organizational Unit: www.plutonium.pw, Organization: Plutonium Project" was found

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware