Gridinsoft Logo
File Icon

The PDFixers.exe (Pdfixers) File Analysis

Updated 1 year ago
Checked by Malware Check
PDFixers.exe

Technical Analysis

File Name PDFixers.exe
File Type
Win32 EXE
Magic Bytes PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
SSDEEP Hash
196608:Sn1PLvFtljMRfLjjL4/Y8261NG9HTta83v:SnZFtlIP4/Y7pO8/
Scanner Version 1.0.172.174
Database Version 2024-04-19 12:00:23 UTC

Suspicious File Detected

Detected by 2 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
3%
Detection Rate
8,506,576
File Size (bytes)
2/71
Engines Detected
2024-04-19
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
e57fbbbb1903c326c9c0bbb7d847b21b
SHA1
b6ba2160b23fc41e5ecc8e0dd15da4f661b6b9a0
SHA256
8a946f12cd227387b5b9e58759bf73d22dd2d857d1fbe56b44678bd656d8d06f
SHA512
37f98a647223984b6bf50fc6446a6556d3dbc9c4d7f721360899c6237a654675152a91c9a9f281acda7194f554a838eff42bbec6538b8572a84a1fe84a434e59

Security Engines with Detections (2 of 71)

ESET-NOD32
a variant of MSIL/Pdfixers.A potentially unwanted Malicious
Malwarebytes
PUP.Optional.MediaArena Malicious
69 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Icon
Hash: 69bcf90a99fa80a49a3d17e78f1d5dae
Fuzzy: b8b634d39ba6baa824ba2dbe8bfefefc
dHash: 30f0c8dcdcdcec00
Image Base 0x140000000
Entry Point 0x140000000
Compilation Time 2078-10-15 05:03:38
Checksum 0x00824fc3 (Actual: 0x00824fc3)
OS Version 4.0
PEiD Signatures PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
Digital Signature OK
Imports 0
Exports 0 functions
Resources 9 Resources
Sections 2 Sections

Version Information

Translation 0x0000 0x04b0
Comments
CompanyName
FileDescription Pdfixers
FileVersion 1.0.0.0
InternalName Pdfixers.exe
LegalCopyright Copyright © 2023
LegalTrademarks
OriginalFilename Pdfixers.exe
ProductName Pdfixers
ProductVersion 1.0.0.0
Assembly Version 1.0.0.0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00002000 8,381,656 bytes 8,381,952 bytes 7.99 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 0C28664F379CB0039F818E3E6A3FE55A
.rsrc 0x00802000 111,804 bytes 112,128 bytes 3.43 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 88250D9B576EA4B56B614EC4FE007258
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

Resource Analysis

Total Resources: 9 (111,252 bytes)
Resource Type Count Total Size Percentage
RT_ICON 6 109,876 bytes
98.8%
RT_GROUP_ICON 1 90 bytes
0.1%
RT_VERSION 1 796 bytes
0.7%
RT_MANIFEST 1 490 bytes
0.4%

Certificate Chain Analysis

Certificate Information
Product Pdfixers
Description Pdfixers
File Version 1.0.0.0
Original Name Pdfixers.exe
Signing Date 03:13 PM 12/31/2023 (562 days ago)
Verification Status Signed
Signers LLC MATCH-TWO-USERS; GlobalSign GCC R45 EV CodeSigning CA 2020; GlobalSign Code Signing Root R45; GlobalSign Root CA - R3
Counter Signers DigiCert Timestamp 2023; DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA; DigiCert Trusted Root G4; DigiCert
Internal Name Pdfixers.exe
Copyright Copyright © 2023
Certificate Chain Summary
GlobalSign Code Signing Root R45 #1 Primary
Validity Period: 2020-07-28 00:00:00 → 2029-03-18 00:00:00
Signature Algorithm: sha384RSA
Serial Number: 78 03 18 42 45 70 8A 41 CF 6F 01 B8 EE B4 A9 54
GlobalSign GCC R45 EV CodeSigning CA 2020 #2 Chain
Validity Period: 2020-07-28 00:00:00 → 2030-07-28 00:00:00
Signature Algorithm: sha256RSA
Serial Number: 77 BD 0E 05 B7 59 0B B6 1D 47 61 53 1E 3F 75 ED
LLC MATCH-TWO-USERS #3 Chain
Validity Period: 2023-11-21 05:49:45 → 2024-11-21 05:49:45
Signature Algorithm: sha256RSA
Serial Number: 47 A8 1E 93 5E 7F 3D DD B0 D0 13 FE
DigiCert Timestamp 2023 #4 Chain
Validity Period: 2023-07-14 00:00:00 → 2034-10-13 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 05 44 AF F3 94 9D 08 39 A6 BF DB 3F 5F E5 61 16
DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA #5 Chain
Validity Period: 2022-03-23 00:00:00 → 2037-03-22 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 07 36 37 B7 24 54 7C D8 47 AC FD 28 66 2A 5E 5B
DigiCert Trusted Root G4 #6 Chain
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
2 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware