The GLoader exe File Malware Analysis
Gridinsoft Logo
File Icon

The GLoader.exe File Analysis

Updated 6 months ago
Checked by Malware Check
GLoader.exe

Technical Analysis

File Name GLoader.exe
File Type
PE32+ executable (GUI) x86-64, for MS Windows
Scanner Version 1.0.216.174
Database Version 2025-05-19 16:00:30 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
49,395,399
File Size (bytes)
2025-05-19
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
7d503c4284ff7c884be563300123f303
SHA1
c6a7454ddd069cc2ad97b56bd9eae52db15c8b34
SHA256
c4014fb5c375e20215f3ddb67437155d200d7b439270027b1d5b1d0e084f8f1f
SHA512
a3064a6f93027dc461624b8c08eedae1747037ea22539c157dcf8847bb6c311fff526aab5aeef87ffff9337d6e5ca587800052caad084f8d96f370fcb1bd4a61
ImpHash
965e162fe6366ee377aa9bc80bdd5c65

PE Analysis

Basic Information

Icon
Hash: 4a0ee7da0ad2e744c90983b1a202a605
Fuzzy: b3c71c45b45744b90c1ad19fb75d5a52
dHash: 900c12b979720c90
Image Base 0x140000000
Entry Point 0x14000ce30
Compilation Time 2025-05-04 16:24:54
Checksum 0x02f1c3fa (Actual: 0x02f1c3fa)
OS Version 6.0
PEiD Signatures PE32+ executable (GUI) x86-64, for MS Windows
Digital Signature No valid SignedData structure was found.
Imports 5 libraries
USER32, COMCTL32, KERNEL32, ADVAPI32, GDI32
Exports 0 functions
Resources 3 Resources
Sections 7 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 173,280 bytes 173,568 bytes 6.48 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 24A931D6DF5A46AAFB80365E91958A31
.rdata 0x0002c000 77,232 bytes 77,312 bytes 5.76 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 2DE3A1EA2A03A7355417DDD5AB556AE4
.data 0x0003f000 21,328 bytes 3,584 bytes 1.83 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 21CF84372DA7D4F31CF0DA0A06D1AE7D
.pdata 0x00045000 8,844 bytes 9,216 bytes 5.33 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 0E007D81CEB91E1FA9F3057E0A609C23
.fptable 0x00048000 256 bytes 512 bytes 0.00 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE BF619EAC0CDF3F68D496EA9344137E8B
.rsrc 0x00049000 12,004 bytes 12,288 bytes 7.84 (Packed/Encrypted) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 0EB6A8E29A2C79C2F75BDFE9DE8CF985
.reloc 0x0004c000 1,892 bytes 2,048 bytes 5.26 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 40DF026883E44C75F0850209C93A8A77
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

Resource Analysis

Total Resources: 3 (11,769 bytes)
Resource Type Count Total Size Percentage
RT_ICON 1 10,445 bytes
88.8%
RT_GROUP_ICON 1 20 bytes
0.2%
RT_MANIFEST 1 1,304 bytes
11.1%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware