Gridinsoft Logo
File Icon

The xf-adesk20_v2 (1).exe File Analysis

Updated 1 month ago
Checked by Malaware Check
xf-adesk20_v2 (1).exe

Technical Analysis

File Name xf-adesk20_v2 (1).exe
File Type
PE32+ executable (GUI) x86-64, for MS Windows
Scanner Version 1.0.215.174
Database Version 2025-04-25 12:00:22 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
952,754
File Size (bytes)
2025-04-25
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
d538fa0c29af435ad699e6afc4bf6388
SHA1
0fe1ff64d327fdf8e1d33d8108e0e0e5836a65d8
SHA256
a2f6fbb63d8317635ff8afd4675d9c2faabf018b2f8639c3cda3daa68c28dce3
SHA512
7f964bc1f88626c8db2a4019fa099d4bfa9c754201a259bbe1d1f5d6dec83e7b977e02e2b6aa65825e915f5b406e4f7a1a47ba3cd4ecf44a2c5fd26e8771d4a0
ImpHash
bc758c921c6e0fda5a933c5b8a3c02e9

PE Analysis

Basic Information

Icon
Hash: 8d9da329386d64d6b86a12bd2f986399
Fuzzy: 9043363bfee17e0d508057b9ae7189e9
dHash: 84b4b4d4c4ccccc0
Image Base 0x140000000
Entry Point 0x140027180
Compilation Time 2023-10-03 07:51:22
Checksum 0x00000000 (Actual: 0x000f88a4)
OS Version 5.2
PEiD Signatures PE32+ executable (GUI) x86-64, for MS Windows
PDB Path D:\Projects\WinRAR\sfx\build\sfxrar64\Release\sfxrar.pdb
Digital Signature No valid SignedData structure was found.
Imports 3 libraries
KERNEL32, OLEAUT32, gdiplus
Exports 0 functions
Resources 27 Resources
Sections 8 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 237,934 bytes 238,080 bytes 6.49 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 018AE3EFA0F168660CE7C21C48D504C6
.rdata 0x0003c000 68,564 bytes 68,608 bytes 5.19 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ E8D78966C6D767E791C1650623644BCE
.data 0x0004d000 153,084 bytes 5,632 bytes 3.77 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 8D969322E7119D376163FBC531E0E4B8
.pdata 0x00073000 11,244 bytes 11,264 bytes 5.51 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 0DC6037EFB8803BCD2B11A9CC88985EA
.didat 0x00076000 856 bytes 1,024 bytes 3.01 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 31DDA3D10FBBAA58C793828DF356A826
_RDATA 0x00077000 348 bytes 512 bytes 3.34 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ AE270B667108CFD6CC3BA721EDC5F3BE
.rsrc 0x00078000 57,412 bytes 57,856 bytes 6.80 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 92ECFE13BB323C988732312341594623
.reloc 0x00087000 2,348 bytes 2,560 bytes 5.27 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ FD5FBB5B9D670E1A44502A2FB1E51F45
Entropy Analysis Alert

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 27 (55,782 bytes)
Resource Type Count Total Size Percentage
PNG 2 8,430 bytes
15.1%
RT_ICON 7 38,113 bytes
68.3%
RT_DIALOG 6 2,958 bytes
5.3%
RT_STRING 10 4,302 bytes
7.7%
RT_GROUP_ICON 1 104 bytes
0.2%
RT_MANIFEST 1 1,875 bytes
3.4%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware