Gridinsoft Logo
File Icon

The X5mR4IZW.exe File Analysis

Updated 17 days ago
Checked by Malware Check
X5mR4IZW.exe

Technical Analysis

File Name X5mR4IZW.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.231.174
Database Version 2025-12-23 07:00:33 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
343,752
File Size (bytes)
2025-12-23
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
35c08482c3235c958caf43e63e3e9d6f
SHA1
0a861ded743043cf07362d4bc2b7b77e31ab804b
SHA256
8eae7b893f76816ae8eff490dc8ce921070548e50ae92ad826c9e34808e644ba
SHA512
a3c9307120b641d5ebc3d3e483deae184c0c1c1e67d7c9c0190473d105979e43a88d14f15e74abfa767e19defa54bb3e135a6a5ab40fb2689074c17b92c27b8b
ImpHash
e5296c7180f977e1de504e4042251b47

PE Analysis

Basic Information

Icon
Hash: 28fd4b28ee26df641ce665653b1b314f
Fuzzy: e66a836dbca05852a3ac53a78fd4b221
dHash: f0968ee8aae8e8b2
Image Base 0x00400000
Entry Point 0x0042db37
Compilation Time 2018-12-21 10:58:09
Checksum 0x0005c962 (Actual: 0x0005c962)
OS Version 5.1
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
PDB Path C:\Qt_Project\SVN-YunXin5\1217\src\basic\SNYXCefWebView\bin\Release\SNYXWebProcessHelper.pdb
Digital Signature OK
Imports 4 libraries
libcef, KERNEL32, MSVCP120, MSVCR120
Exports 0 functions
Resources 25 Resources
Sections 5 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 192,043 bytes 192,512 bytes 6.21 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 4B693ED8FE532264ED05B49C3B4D8955
.rdata 0x00030000 25,416 bytes 25,600 bytes 4.81 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ AB9EAE63376932EBBB672F8517C8EF7A
.data 0x00037000 4,352 bytes 3,072 bytes 4.60 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE D2EC04618FAD03DA431C9648E0A40FFC
.rsrc 0x00039000 95,336 bytes 95,744 bytes 4.11 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 3D5CE21A0D0C1F436082337CC1C60485
.reloc 0x00051000 10,692 bytes 10,752 bytes 6.60 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ AE0AFEFA95ABD2454FD70C947A7B81F0
Entropy Analysis Alert

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 25 (93,945 bytes)
Resource Type Count Total Size Percentage
RT_ICON 18 92,154 bytes
98.1%
RT_MENU 1 80 bytes
0.1%
RT_DIALOG 1 332 bytes
0.4%
RT_STRING 1 108 bytes
0.1%
RT_ACCELERATOR 1 16 bytes
0%
RT_GROUP_ICON 2 264 bytes
0.3%
RT_MANIFEST 1 991 bytes
1.1%

Certificate Chain Analysis

Certificate Information
Signing Date 03:07 AM 07/26/2019 (2359 days ago)
Verification Status Signed
Signers 江苏苏宁易购电子商务有限公司; Symantec Class 3 SHA256 Code Signing CA; VeriSign
Counter Signers DigiCert Timestamp Responder; DigiCert Assured ID CA-1; DigiCert
Certificate Chain Summary
江苏苏宁易购电子商务有限公司 #1 Primary
Validity Period: 2018-12-11 00:00:00 → 2021-12-10 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 76 F7 66 23 5F 85 12 1A 95 AF 00 B6 E1 FE 70 60
Symantec Class 3 SHA256 Code Signing CA #2 Chain
Validity Period: 2013-12-10 00:00:00 → 2023-12-09 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 3D 78 D7 F9 76 49 60 B2 61 7D F4 F0 1E CA 86 2A
DigiCert Timestamp Responder #3 Chain
Validity Period: 2014-10-22 00:00:00 → 2024-10-22 00:00:00
Signature Algorithm: sha1RSA
Serial Number: 03 01 9A 02 3A FF 58 B1 6B D6 D5 EA E6 17 F0 66
DigiCert Assured ID CA-1 #4 Chain
Validity Period: 2006-11-10 00:00:00 → 2021-11-10 00:00:00
Signature Algorithm: sha1RSA
Serial Number: 06 FD F9 03 96 03 AD EA 00 0A EB 3F 27 BB BA 1B

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for
/

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware