The XTUSetup 7 14 2 14 exe (Intel(R) Extreme Tuning Utility) Intel Corporation File Malware Analysis
Gridinsoft Logo
File Icon

The XTUSetup_7.14.2.14.exe (Intel(R) Extreme Tuning Utility) File Analysis

Updated 9 months ago
Checked by Malware Check
XTUSetup_7.14.2.14.exe

Technical Analysis

File Name XTUSetup_7.14.2.14.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.210.174
Database Version 2025-03-05 16:00:28 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
49,835,248
File Size (bytes)
2025-03-05
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
f2f4786a31fd65d3a85409ce9f716c8f
SHA1
b158d588d5dbb5f5b70fd2d5ab42bf3afc925dcb
SHA256
c79efd826cec71aa33dfe9f128b23dfbcecaa5d0a9062764aab45dee07e6fcc9
SHA512
4e6dea2aff9b7f3f077e1e8af30c4d60d7e8d858d5d8ee644ed084d6910c32f40e41de9e07773a27bd90139302f4daba8e96bc2904cbc08ae43fecb43b927660
ImpHash
e277f1464e7729ad9df5ec047611738a

PE Analysis

Basic Information

Icon
Hash: 92f15e209c83453bf769129bf48a447a
Fuzzy: 338399aa9359f43ec60d916a3a55132c
dHash: f4dcd4ececcce8c0
Image Base 0x00400000
Entry Point 0x004302e5
Compilation Time 2024-03-22 22:14:43
Checksum 0x02f8bef8 (Actual: 0x02f8bef8)
OS Version 6.0
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
PDB Path C:\agent\_work\36\s\wix\build\ship\x86\burn.pdb
Digital Signature OK
Imports 8 libraries
ADVAPI32, USER32, OLEAUT32, GDI32, SHELL32, ole32, KERNEL32, RPCRT4
Exports 0 functions
Resources 14 Resources
Sections 6 Sections

Version Information

CompanyName Intel Corporation
FileDescription Intel(R) Extreme Tuning Utility
FileVersion 7.14.2.14
InternalName setup
LegalCopyright Copyright (c) Intel Corporation. All rights reserved.
OriginalFilename XTUUISetup.exe
ProductName Intel(R) Extreme Tuning Utility
ProductVersion 7.14.2.14
Translation 0x0409 0x04e4

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 313,918 bytes 314,368 bytes 6.58 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 6815C282E1BC693149A4065A4B552600
.rdata 0x0004e000 128,550 bytes 129,024 bytes 5.08 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ B06EC0F7AEC92EC457D68A2887BDC39F
.data 0x0006e000 6,204 bytes 3,072 bytes 2.87 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 350A688B66A5DDC1EA1D1A0CC2D04020
.wixburn 0x00070000 56 bytes 512 bytes 0.74 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ D65A6DD84564640502555F44C33F3ADE
.rsrc 0x00071000 48,744 bytes 49,152 bytes 6.22 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 1969399FDBBD67EEDB68F2D97953CAFC
.reloc 0x0007d000 16,060 bytes 16,384 bytes 6.75 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ AC56AC7D93B473EBE9A2A079106F6056
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 14 (47,932 bytes)
Resource Type Count Total Size Percentage
RT_ICON 10 35,392 bytes
73.8%
RT_MESSAGETABLE 1 10,304 bytes
21.5%
RT_GROUP_ICON 1 146 bytes
0.3%
RT_VERSION 1 856 bytes
1.8%
RT_MANIFEST 1 1,234 bytes
2.6%

Certificate Chain Analysis

Certificate Information
Product Intel(R) Extreme Tuning Utility
Description Intel(R) Extreme Tuning Utility
File Version 7.14.2.14
Original Name XTUUISetup.exe
Signing Date 05:11 PM 06/25/2024 (537 days ago)
Verification Status Signed
Signers Intel Corporation; Sectigo Public Code Signing CA R36; Sectigo Public Code Signing Root R46; Sectigo (AAA)
Counter Signers Sectigo RSA Time Stamping Signer #4; Sectigo RSA Time Stamping CA; Sectigo
Internal Name setup
Copyright Copyright (c) Intel Corporation. All rights reserved.
Certificate Chain Summary
Intel Corporation #1 Primary
Validity Period: 2024-03-05 00:00:00 → 2025-03-05 23:59:59
Signature Algorithm: sha384RSA
Serial Number: C5 5D 7F DE E0 B7 53 B0 FE B3 4C ED E0 D1 81 42
Sectigo Public Code Signing CA R36 #2 Chain
Validity Period: 2021-03-22 00:00:00 → 2036-03-21 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 62 1D 6D 0C 52 01 9E 3B 90 79 15 20 89 21 1C 0A
Sectigo Public Code Signing Root R46 #3 Chain
Validity Period: 2021-03-22 00:00:00 → 2038-01-18 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 02 7C 39 01 0C A7 5A C3 3A B5 EE 0D 54 0E F9 E5
Sectigo RSA Time Stamping Signer #4 #4 Chain
Validity Period: 2023-05-03 00:00:00 → 2034-08-02 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 39 4C 25 E1 7C A0 6D 27 A8 65 E2 3B D9 1D 22 D4
Sectigo RSA Time Stamping CA #5 Chain
Validity Period: 2019-05-02 00:00:00 → 2038-01-18 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 30 0F 6F AC DD 66 98 74 7C A9 46 36 A7 78 2D B9

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware