Gridinsoft Logo
File Icon

The BYqVimjzIMtY1TNLO4f49lgwy.exe File Analysis

Updated 1 month ago
Checked by Malaware Check
BYqVimjzIMtY1TNLO4f49lgwy.exe

Technical Analysis

File Name BYqVimjzIMtY1TNLO4f49lgwy.exe
File Type
PE32+ executable (console) x86-64, for MS Windows
Scanner Version 1.0.213.174
Database Version 2025-04-13 20:00:25 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
2,423,296
File Size (bytes)
2025-04-13
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
d00c19c2a0782416994ad9f6e13b23bc
SHA1
71ad036f1fed8cfb308faaca522bd2441365f48e
SHA256
f555ed1038051b8879382799e401721fd4cd1d2ac8fa4244ec5489e8774db4fc
SHA512
7e04e66ff8742d570462e720f223ca4dbc41014fc2b98779c4ea4524cab10395f532b3a3c7bb038cab2b4e28ddfc1d0c9cea2b565ba36bb77e60f29a8659167f
ImpHash
801bf6c6cb3a365c24303b2f4784c85d

PE Analysis

Basic Information

Icon
Hash: 640cf982e969babb5b4f52cd86470ed3
Fuzzy: 7220d36a641ae0c775c41e3c1be97564
dHash: 908864f0d9d43444
Image Base 0x140000000
Entry Point 0x140140508
Compilation Time 2025-04-12 15:32:12
Checksum 0x00000000 (Actual: 0x0025cdc6)
OS Version 6.0
PEiD Signatures PE32+ executable (console) x86-64, for MS Windows
PDB Path C:\Users\WoX\Desktop\Main\Swozy-External\output\Nvidia App.pdb
Digital Signature No valid SignedData structure was found.
Imports 24 libraries
Exports 0 functions
Resources 7 Resources
Sections 6 Sections

Version Information

FileVersion 1.0.0.0
InternalName AimStar.exe
LegalCopyright Copyright (C) 2023
OriginalFilename CS2.exe
ProductName AimStar Cheat
ProductVersion 1.0.0.0
Translation 0x0804 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 1,354,383 bytes 1,354,752 bytes 5.77 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ BA8D502A9079B2E988D55727E4D1156D
.rdata 0x0014c000 361,320 bytes 361,472 bytes 6.53 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ E1D3A7950A17D5F7B332A6771E50C108
.data 0x001a5000 633,336 bytes 625,152 bytes 6.90 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE F632E69FDF771DBE9578D59F4F2D0DDE
.pdata 0x00240000 61,764 bytes 61,952 bytes 5.77 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 640738697189EF3D092906535BC22791
.rsrc 0x00250000 17,048 bytes 17,408 bytes 1.56 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 6BCE4722AFEEA18411821C3AE2202275
.reloc 0x00255000 1,492 bytes 1,536 bytes 5.27 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 8DADFB60E60AC51D331A7025D09563F8
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 7 (16,592 bytes)
Resource Type Count Total Size Percentage
RT_ICON 4 15,581 bytes
93.9%
RT_GROUP_ICON 1 62 bytes
0.4%
RT_VERSION 1 568 bytes
3.4%
RT_MANIFEST 1 381 bytes
2.3%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware