Gridinsoft Logo

The VmgPageFileTest.bin File Analysis

Updated 1 second ago
Checked by Malware Check
VmgPageFileTest.bin

Technical Analysis

File Name VmgPageFileTest.bin
File Type
Win32 EXE
Magic Bytes PE32 executable (console) Intel 80386, for MS Windows
SSDEEP Hash
384:iqLDdeR/XFY2GcUUMoJ7ktuvknOTu43A9kmAnxhSXC6qIMDgQ/PzvRO7Dt:AXCV6XugWk5yXC6q/gQ/P7ROHt
Scanner Version 1.0.219.174
Database Version 2025-06-29 14:00:29 UTC

Suspicious File Detected

Detected by 31 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
43%
Detection Rate
25,088
File Size (bytes)
31/72
Engines Detected
2025-06-29
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
d5c8b42d9661aa181c16d3ba4cfd1094
SHA1
b2362dab3023fdfd4d541331bb4e62fb6610a00d
SHA256
b8f39175ae7c120b9f47ddcfef245ebe0e32a7049eded834ccdd8202d9be90c9
SHA512
1d56e6e1c22712ea118849c59afc41f9070f1814fbc8774a601930c3b5b0734facd7de29134c2e87777057d3fee7852394aa6d3720b5b513478246e86699ec92
ImpHash
a9c4109197fd6b73ff001ef898fab3ed

Security Engines with Detections (31 of 72)

Bkav
W32.Common.CD3A2C1B Malicious
Lionic
Trojan.Win32.Swisyn.4!c Malicious
MicroWorld-eScan
Gen:Variant.Fragtor.769134 Malicious
CAT-QuickHeal
Trojan.Ghanarava.1746988680fd1094 Malicious
ALYac
Gen:Variant.Fragtor.769134 Malicious
Cylance
Unsafe Malicious
Zillya
Trojan.Swisyn.Win32.37121 Malicious
Sangfor
Trojan.Win32.Swisyn.Vf1q Malicious
TrendMicro-HouseCall
TROJ_GEN.R002H09B625 Malicious
Paloalto
generic.ml Malicious
Kaspersky
Trojan.Win32.Swisyn.fvaa Malicious
BitDefender
Gen:Variant.Fragtor.769134 Malicious
Avast
Win32:MalwareX-gen [Trj] Malicious
Rising
Trojan.Swisyn!8.630 (CLOUD) Malicious
Emsisoft
Gen:Variant.Fragtor.769134 (B) Malicious
F-Secure
Trojan.TR/Swisyn.hpqpu Malicious
VIPRE
Gen:Variant.Fragtor.769134 Malicious
CTX
exe.trojan.swisyn Malicious
Sophos
Mal/Generic-S Malicious
Ikarus
Trojan.Swisyn Malicious
GData
Gen:Variant.Fragtor.769134 Malicious
Google
Detected Malicious
Avira
TR/Swisyn.hpqpu Malicious
Varist
W32/ABTrojan.JNCS-0961 Malicious
Arcabit
Trojan.Fragtor.DBBC6E Malicious
Malwarebytes
Malware.AI.2618414429 Malicious
Tencent
Win32.Trojan.Swisyn.Gplw Malicious
MaxSecure
Trojan.Malware.215572068.susgen Malicious
AVG
Win32:MalwareX-gen [Trj] Malicious
DeepInstinct
MALICIOUS Malicious
alibabacloud
Trojan:Win/Swisyn.fmbh Malicious
41 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Image Base 0x00400000
Entry Point 0x00403bae
Compilation Time 2018-07-27 09:49:03
Checksum 0x0000d4e1 (Actual: 0x0000d4e1)
OS Version 5.0
PEiD Signatures PE32 executable (console) Intel 80386, for MS Windows
PDB Path c:\Durai\Reads-Perfmon\vmgPageFileTest\Release\VmgPageFileTest.pdb
Digital Signature No valid SignedData structure was found.
Imports 5 libraries
pdh, KERNEL32, ADVAPI32, MSVCR90, MSVCP90
Exports 0 functions
Resources 1 Resources
Sections 4 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 16,943 bytes 17,408 bytes 5.87 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ BE97D7D91F86188998D216DBA7137BF5
.rdata 0x00006000 4,830 bytes 5,120 bytes 4.51 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 6FF2B265745603F6FEED11283D91CA48
.data 0x00008000 1,148 bytes 512 bytes 2.41 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 06E2CA6D29B494DA3D20935EE026D5CC
.rsrc 0x00009000 688 bytes 1,024 bytes 5.19 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 7D2EBD767F7012D073A412597B9BB56D

Resource Analysis

Total Resources: 1 (598 bytes)
Resource Type Count Total Size Percentage
RT_MANIFEST 1 598 bytes
100%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
31 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware