The Overstretched File Analysis
| Online Virus Checker | v.1.0.168.174 |
| DB Version: | 2024-03-01 08:00:18 |
The Overstretched Is Suspicious
This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
| File | Update_65e15a29e5a73.exe |
| Checked | 2024-03-01 07:02:51 |
| Type | Win32 EXE |
| Threat | Trojan |
| MD5 | 1b60491e468ecbaf0352856aa03a2c33 |
| SHA1 | d2751c891505a7d543a32e43ff1a7bf9679e6a35 |
| SHA256 | dfd2cc2b48e49cf40d2f6d2ea171cc9f4d10f9a4d0191d96ed8082c8c6614430 |
| SHA512 | fb1b2ef5cd70a9fff1642ce22c312927acaa3b329fb7b715783878657fef04afd46e1138e4cbae570fc3eef48a59440c15867771cc20e1ecc1229c718df70de8 |
| Imphash | 274756ea45c523b061a21f39709cf019 |
| File Size | 2166272 bytes |
Remember: This is Result of Online Virus Scanner
Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:
- Start by downloading Gridinsoft Anti-Malware to your computer.
- Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
- Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
- Click on the "Standard Scan" button.
- After the scanning process is finished, click on "Clean Now" to remove any detected threats.
- If prompted, restart your system to complete the removal process.
File Version Information
| Comments | Teed funnies plovers headwords angioplasty |
| CompanyName | Swamped borrowing exhumation |
| FileDescription | Models unaffected elides trick wand unread |
| FileVersion | 7.192.135.7 |
| InternalName | Overstretched |
| LegalCopyright | Copyright © Atrocious quiveringly shade trunk |
| LegalTrademarks | Premiss stewardess |
| OriginalFilename | Laddered |
| ProductName | Lions bombay |
| ProductVersion | 7.192.135.7 |
| Translation | 0x0404 0x04e4 |
Portable Executable Info
| Image Base: | 0x140000000 |
| Entry Point: | 0x14015c3c8 |
| Compilation: | 2024-02-29 18:16:37 |
| Checksum: | 0x002191b6 (Actual: 0x0021d661) |
| OS Version: | 6.0 |
| PEiD: | PE32+ executable (GUI) x86-64, for MS Windows |
| Sign: | The PE file does not contain a certificate table. |
| Sections: | 7 |
| Imports: | KERNEL32, USER32, GDI32, WINSPOOL, COMDLG32, ADVAPI32, SHELL32, COMCTL32, USERENV, dxgi, |
| Exports: | 0 |
| Resources: | 3 |
Sections
| Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
|---|---|---|---|---|---|
| .text | 0x00001000 | 0x00169be0 | 0x00169c00 | ab4c6d27605dadf08ec64918ebcdc0a3 | 5.45 |
| .rdata | 0x0016b000 | 0x0000bcc6 | 0x0000be00 | 0088be5361a4d1e67374d75abea7ba70 | 4.90 |
| .data | 0x00177000 | 0x0000cb60 | 0x0000aa00 | 41911d82d7f1524c8b10aea98acd3138 | 3.92 |
| .pdata | 0x00184000 | 0x0000105c | 0x00001200 | 729bf4c1586510989ced79f2df104690 | 5.08 |
| _RDATA | 0x00186000 | 0x000001f4 | 0x00000200 | 5a691dc1354e0189dbb590cdc96aae52 | 4.20 |
| .rsrc | 0x00187000 | 0x0008e888 | 0x0008ea00 | dbdea59b9545bfa3a5f3b9e3020d8d7c | 6.01 |
| .reloc | 0x00216000 | 0x00000740 | 0x00000800 | e41c2c8b2a58d20a43568c89c6925b34 | 5.20 |
