Gridinsoft Logo
File Icon

The MinecraftInstaller (1).exe (MinecraftInstaller) File Analysis

Technical Analysis

File Name MinecraftInstaller (1).exe
File Type
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Scanner Version 1.0.216.174
Database Version 2025-05-20 06:00:30 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
33,904,224
File Size (bytes)
2025-05-20
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
e4deb3624e6d89f5f6ef22fedacc3f9a
SHA1
e0919c595923082f6ccf00fdd1fde3fca2d0c338
SHA256
e7b0b17e1ea03055fea83b1e6c7da387eb64ba064268140e3b33f1a15ee77eb7
SHA512
68a7304b531fa49998a0368c7d731549b155ca793237140b53dd9d190b7581c066f02f35bcdcd12e4bfbaae2ef560b1d75ec7a6d14fa3daa3a28b29dea0c3547
ImpHash
f34d5f2d4577ed6d9ceec516c1f5a744

PE Analysis

Basic Information

Icon
Hash: f08e7f0b90985cfefb451febfaad14f3
Fuzzy: ae4e084b38fd0f40406c5d134a538175
dHash: 0e1771311b791b0e
Image Base 0x00400000
Entry Point 0x023f9d16
Compilation Time 2025-01-25 01:45:20
Checksum 0x0206244d (Actual: 0x0206244d)
OS Version 4.0
PEiD Signatures PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
PDB Path D:\a\_work\1\s\MinecraftInstaller\obj\Release\MinecraftInstaller.pdb
Digital Signature Chain verification from CN=Code Sign Test (DO NOT TRUST), O=Microsoft Corporation, L=Redmond, ST=Washington, C=US (serial:1137338014188646340988945605478727021821429457, sha1:45514e7d02f3d3b573feead17527fff863d6e539) failed: Unable to build a validation path for the certificate "Common Name: Code Sign Test (DO NOT TRUST), Organization: Microsoft Corporation, Locality: Redmond, State/Province: Washington, Country: US" - no issuer matching "Common Name: Microsoft Testing Root Certificate Authority 2010, Organization: Microsoft Corporation, Locality: Redmond, State/Province: Washington, Country: US" was found
Imports 1 libraries
mscoree
Exports 0 functions
Resources 9 Resources
Sections 3 Sections

Version Information

Translation 0x0000 0x04b0
Comments
CompanyName
FileDescription MinecraftInstaller
FileVersion 1.17.9156.3160
InternalName MinecraftInstaller.exe
LegalCopyright Copyright © 2023
LegalTrademarks
OriginalFilename MinecraftInstaller.exe
ProductName MinecraftInstaller
ProductVersion 1.17.9156.3160
Assembly Version 1.17.9156.3160

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00002000 33,520,924 bytes 33,521,152 bytes 7.72 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ E6726A1644047DA1AEA077CA3644DD42
.rsrc 0x01ffa000 372,024 bytes 372,224 bytes 5.25 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 46674575415D030C92459EC04998D74A
.reloc 0x02056000 12 bytes 512 bytes 0.12 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ FD087A4C1E73D090F97770EB1B15BB54
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

Resource Analysis

Total Resources: 9 (371,470 bytes)
Resource Type Count Total Size Percentage
RT_ICON 6 369,968 bytes
99.6%
RT_GROUP_ICON 1 90 bytes
0%
RT_VERSION 1 922 bytes
0.2%
RT_MANIFEST 1 490 bytes
0.1%

Certificate Chain Analysis

Certificate Information
Product MinecraftInstaller
Description MinecraftInstaller
File Version 1.17.9156.3160
Original Name MinecraftInstaller.exe
Signing Date 01:46 AM 01/25/2025 (132 days ago)
Verification Status A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
Signers Code Sign Test (DO NOT TRUST); Microsoft Testing PCA 2010; Microsoft Testing Root Certificate Authority 2010
Counter Signers Microsoft Time-Stamp Service; Microsoft Time-Stamp PCA 2010; Microsoft Root Certificate Authority 2010
Internal Name MinecraftInstaller.exe
Copyright Copyright © 2023
Certificate Chain Summary
Microsoft Corporation #1 Primary
Validity Period: 2024-08-22 19:25:57 → 2025-07-05 19:25:57
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 05 A7 B8 8F FB 97 5D 35 84 EC 00 00 00 00 05 A7
Microsoft Code Signing PCA 2010 #2 Chain
Validity Period: 2010-07-06 20:40:17 → 2025-07-06 20:50:17
Signature Algorithm: sha256RSA
Serial Number: 61 0C 52 4C 00 00 00 00 00 03
Microsoft Time-Stamp Service #3 Chain
Validity Period: 2023-12-06 18:45:41 → 2025-03-05 18:45:41
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 01 ED E1 5F CB D5 F7 A5 5D 73 00 01 00 00 01 ED
Microsoft Time-Stamp PCA 2010 #4 Chain
Validity Period: 2021-09-30 18:22:25 → 2030-09-30 18:32:25
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 00 15 C5 E7 6B 9E 02 9B 49 99 00 00 00 00 00 15
Code Sign Test (DO NOT TRUST) #5 Chain
Validity Period: 2024-06-19 19:22:31 → 2025-06-17 19:22:31
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 06 D1 95 38 56 A8 68 B5 E8 F4 00 01 00 00 06 D1
Microsoft Testing PCA 2010 #6 Chain
Validity Period: 2020-12-10 20:43:20 → 2035-06-17 21:04:11
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 00 2D 35 7A 46 88 C9 07 71 D8 00 00 00 00 00 2D
Microsoft Time-Stamp Service #7 Chain
Validity Period: 2024-07-25 18:30:59 → 2025-10-22 18:30:59
Signature Algorithm: sha256RSA
Serial Number: 33 00 00 01 F4 17 46 85 C0 CB 3F 39 E5 00 01 00 00 01 F4

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

Chain verification from CN=Code Sign Test (DO NOT TRUST), O=Microsoft Corporation, L=Redmond, ST=Washington, C=US (serial:1137338014188646340988945605478727021821429457, sha1:45514e7d02f3d3b573feead17527fff863d6e539) failed: Unable to build a validation path for the certificate "Common Name: Code Sign Test (DO NOT TRUST), Organization: Microsoft Corporation, Locality: Redmond, State/Province: Washington, Country: US" - no issuer matching "Common Name: Microsoft Testing Root Certificate Authority 2010, Organization: Microsoft Corporation, Locality: Redmond, State/Province: Washington, Country: US" was found

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Gridinsoft Anti-Malware