The Game exe (Project Management and CI/CD System) ChronosWave Labs File Malware Analysis
Gridinsoft Logo
File Icon

The Game.exe (Project Management and CI/CD System) File Analysis

Updated 19 days ago
Checked by Malware Check
Game.exe

Technical Analysis

File Name Game.exe
File Type
Win32 EXE
Magic Bytes PE32+ executable (GUI) x86-64, for MS Windows
SSDEEP Hash
393216:UfNi8x+zds3HSSf401gqNQK5plBRVz3xWE+xQSI8w5SvDazn1d5VRYv4LWoaM8+u:UMdCJmQlR4Vu0C1SpgPVlcmLM
Scanner Version 1.0.230.174
Database Version 2025-12-06 22:00:19 UTC

Suspicious File Detected

Detected by 20 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
29%
Detection Rate
73,783,756
File Size (bytes)
20/70
Engines Detected
2025-12-06
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
fa3f5145989f0d2a16bbefb4e6272194
SHA1
c848e20ef66d97bdd16b08be8b1aaac621cc529b
SHA256
e0a34018c37320862d1492a8c4259f3dbf6ac9b2cea55141a6d0f66ce96d26aa
SHA512
f6cd098de920c5a40cbccccbbfa387aa0ac757f78fbe8621016e995180550599decdd8b0f08b250e22aff7e146d3bce71ce1cb30933a3e06f5a41ac52429470a
ImpHash
35686f86a183dc6a9ec694033bf670c2

Security Engines with Detections (20 of 70)

MicroWorld-eScan
QD:Trojan.GenericKDQ.0079FE5371 Malicious
ALYac
QD:Trojan.GenericKDQ.0079FE5371 Malicious
Malwarebytes
Malware.AI.36017855 Malicious
VIPRE
QD:Trojan.GenericKDQ.0079FE5371 Malicious
BitDefender
QD:Trojan.GenericKDQ.0079FE5371 Malicious
Arcabit
QD:Trojan.GenericQ.0079FE5371 Malicious
VirIT
Trojan.Win64.Agent.HLZ Malicious
Symantec
JS.Redirector Malicious
ESET-NOD32
JS/Agent.TQT trojan Malicious
Kaspersky
HEUR:Trojan-PSW.Win64.Stealka.gen Malicious
McAfeeD
ti!E0A34018C373 Malicious
CTX
exe.trojan.generic Malicious
Emsisoft
QD:Trojan.GenericKDQ.0079FE5371 (B) Malicious
GData
QD:Trojan.GenericKDQ.0079FE5371 Malicious
AhnLab-V3
Malware/Win.Generic.R737569 Malicious
DeepInstinct
MALICIOUS Malicious
Rising
Trojan.Agent/JS!8.11351 (LESS:bWQ1Ovo/UUWYnw0qFrvvtOYnIZQ) Malicious
huorong
TrojanSpy/Stealer.o!crit Malicious
Fortinet
JS/Agent.TQT!tr Malicious
alibabacloud
Trojan:Javascript/Agent.TRB Malicious
50 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Icon
Hash: bcd3fc5aa919c0c370f99caa033bde67
Fuzzy: f85b6e3d537cc495e938fcfe19b80b21
dHash: f0f0f0f0e8e8f070
Image Base 0x140000000
Entry Point 0x14154dc08
Compilation Time 2025-11-03 17:05:30
Checksum 0x04666cdb (Actual: 0x04666cdb)
OS Version 6.0
PEiD Signatures PE32+ executable (GUI) x86-64, for MS Windows
PDB Path D:\20.19.3\out\Release\node.pdb
Digital Signature No valid SignedData structure was found.
Imports 13 libraries
Exports 8569 functions
Resources 13 Resources
Sections 7 Sections

Version Information

FileDescription Project Management and CI/CD System
InternalName cryonix
OriginalFilename nivora.exe
CompanyName ChronosWave Labs
LegalCopyright © 2010 ChronosWave Labs.
ProductName Nivora Studio
FileVersion 3.7.63
ProductVersion 3.7.63
Translation 0x0409 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 22,696,940 bytes 22,696,960 bytes 6.49 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 372DC36665FB0AD6612579A86EE7BD12
.rdata 0x015a7000 46,789,130 bytes 46,789,632 bytes 6.18 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 92AA79FB5ADDB61994D6FFF9CA012847
.data 0x04247000 3,068,260 bytes 203,776 bytes 3.80 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 7845142A734FCD98E2E383C7586C3427
.pdata 0x04535000 1,057,224 bytes 1,057,280 bytes 6.93 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 66B1410E3FFFD8279C379A4EB3D90970
.fptable 0x04638000 256 bytes 512 bytes 0.00 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE BF619EAC0CDF3F68D496EA9344137E8B
.rsrc 0x04639000 253,665 bytes 253,952 bytes 6.51 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ B624DA376A1DDBB79F79A6458077ACD6
.reloc 0x04677000 146,628 bytes 146,944 bytes 5.48 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 0F58CE4B430849191C66192B57B47892
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 13 (252,904 bytes)
Resource Type Count Total Size Percentage
RT_ICON 10 251,349 bytes
99.4%
RT_GROUP_ICON 1 146 bytes
0.1%
RT_VERSION 1 760 bytes
0.3%
RT_MANIFEST 1 649 bytes
0.3%

Certificate Chain Analysis

Certificate Information
Product Nivora Studio
Description Project Management and CI/CD System
File Version 3.7.63
Original Name nivora.exe
Internal Name cryonix
Copyright © 2010 ChronosWave Labs.

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
20 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware