The Target2100 Komunikator v2025 04 MG2 exe File Malware Analysis
Gridinsoft Logo
File Icon

The Target2100_Komunikator_v2025.04_MG2.exe File Analysis

Updated 6 months ago
Checked by Malware Check
Target2100_Komunikator_v2025.04_MG2.exe

Technical Analysis

File Name Target2100_Komunikator_v2025.04_MG2.exe
File Type
Win32 EXE
Magic Bytes PE32+ executable (GUI) x86-64, for MS Windows
SSDEEP Hash
98304:9TjHgplZbU1sNzJa9SKZwWvulJ4LXIQBwPOGlwQ/R:9TUtw1l3bvulJ47/ByLLR
Scanner Version 1.0.217.174
Database Version 2025-06-05 09:00:23 UTC

Suspicious File Detected

Detected by 7 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
10%
Detection Rate
5,549,310
File Size (bytes)
7/71
Engines Detected
2025-06-05
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
e0d9d657f8586703490725e89573da47
SHA1
fcbee4811020721a8cc197f2beb8d85f9ce3f387
SHA256
dcb68623bbbac663fa86b1bb600b923692c7607d481463864871911fd68b62e3
SHA512
318c503aa7cb1e3a3309698bec2056c798a771fd3a17c305b22cd4ecb433d4ba5b4bfd8d609405718b7a6059d4114704fe7f4dc0e17d70873ecd5df6d88a93a7
ImpHash
7e0a0e8f80bbd1a9c0078e57256f1c3d

Security Engines with Detections (7 of 71)

Bkav
W64.AIDetectMalware Malicious
Elastic
malicious (moderate confidence) Malicious
Skyhigh
BehavesLike.Win64.Generic.tc Malicious
Cylance
Unsafe Malicious
Zillya
Trojan.Generic.Win32.1924117 Malicious
APEX
Malicious Malicious
Jiangmin
Trojan.Tedy.v Malicious
64 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Icon
Hash: 8d9da329386d64d6b86a12bd2f986399
Fuzzy: 9043363bfee17e0d508057b9ae7189e9
dHash: 84b4b4d4c4ccccc0
Image Base 0x140000000
Entry Point 0x140032690
Compilation Time 2025-03-20 10:01:29
Checksum 0x00000000 (Actual: 0x0054bf70)
OS Version 6.0
PEiD Signatures PE32+ executable (GUI) x86-64, for MS Windows
PDB Path D:\Projects\WinRAR\SFX\build\sfxrar64\Release\sfxrar.pdb
Digital Signature No valid SignedData structure was found.
Imports 3 libraries
KERNEL32, OLEAUT32, gdiplus
Exports 0 functions
Resources 28 Resources
Sections 7 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 307,038 bytes 307,200 bytes 6.49 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 5995623607A979A298A031454D097062
.rdata 0x0004c000 76,718 bytes 76,800 bytes 5.27 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ BB9DEEC6C279C08D33B0F2F392FAF6CD
.data 0x0005f000 59,732 bytes 7,168 bytes 3.10 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE F5FF774F0C52797DC0B5B074D91D548A
.pdata 0x0006e000 13,068 bytes 13,312 bytes 5.59 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 012CCA679E6073E4A57CFE5D0AA7E15B
.didat 0x00072000 880 bytes 1,024 bytes 3.07 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 8D174B3ED46B18209229717A096F9CE2
.rsrc 0x00073000 54,616 bytes 54,784 bytes 6.47 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ E586DB3A4873EF6E8BCA12B170094C99
.reloc 0x00081000 2,452 bytes 2,560 bytes 5.35 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 3EDFACE8C73D88F866B4E76630300093

Resource Analysis

Total Resources: 28 (52,885 bytes)
Resource Type Count Total Size Percentage
PNG 2 7,077 bytes
13.4%
RT_ICON 7 35,875 bytes
67.8%
RT_DIALOG 6 2,916 bytes
5.5%
RT_STRING 11 5,038 bytes
9.5%
RT_GROUP_ICON 1 104 bytes
0.2%
RT_MANIFEST 1 1,875 bytes
3.5%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
7 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware