Gridinsoft Logo
File Icon

The EbSynth.exe File Analysis

Updated 2 months ago
Checked by Malware Check
EbSynth.exe

Technical Analysis

File Name EbSynth.exe
File Type
PE32+ executable (GUI) x86-64, for MS Windows
Scanner Version 1.0.228.174
Database Version 2025-11-10 00:00:26 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
7,599,616
File Size (bytes)
2025-11-10
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
e20c58f8efa585dae9a3e13e32c9ab5a
SHA1
18a8f574fca097256780cb27f063fe755c6cecd6
SHA256
fc00e9d781f9684a7ca9f315f82a201273c20ba96eb571374d99a63e0e0bc3a0
SHA512
eb055e9505fb84747ed35120364e7c6102883cde07c2c2d493f22e34bbd1898cccdca182d3e06a68457aeaee9928132bf0033485d2e94e601c85747070aec591
ImpHash
0b431ff3ab12d22d491b4bda58017cf9

PE Analysis

Basic Information

Icon
Hash: 704ead321007527d59691c5f1f03a1b6
Fuzzy: 3acf75aff8f24749b8c63ed55bfd8ccc
dHash: cc867371596d9ecc
Image Base 0x140000000
Entry Point 0x1403de830
Compilation Time 2020-08-12 18:48:28
Checksum 0x00000000 (Actual: 0x00747c07)
OS Version 6.0
PEiD Signatures PE32+ executable (GUI) x86-64, for MS Windows
Digital Signature No valid SignedData structure was found.
Imports 8 libraries
SHELL32, ADVAPI32, USER32, KERNEL32, GDI32, ole32, COMDLG32, VCOMP140
Exports 1 functions
Resources 9 Resources
Sections 11 Sections

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 4,463,624 bytes 4,464,128 bytes 6.38 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 00AC4B0F4736F27A7F548767DFFB2988
.rdata 0x00443000 852,700 bytes 852,992 bytes 5.42 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 3725C2C630D4B385BCF23A66F96F791C
.data 0x00514000 582,916 bytes 35,328 bytes 4.93 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE CF4F70A54F3911E407A2AF7316431E34
.pdata 0x005a3000 123,060 bytes 123,392 bytes 6.36 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 8EE52A84D41B19B49C9215C136A36C45
.nv_fatb 0x005c2000 1,885,768 bytes 1,886,208 bytes 6.89 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE B536566BBF3617970C083A79625B4D0C
.nvFatBi 0x0078f000 24 bytes 512 bytes 0.18 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE C3779234C9486DB9819629A034C29DDF
.gfids 0x00790000 2,732 bytes 3,072 bytes 3.35 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 490B0D5F0BA7601A02C3EC2C02E022AB
.tls 0x00791000 9 bytes 512 bytes 0.02 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 1F354D76203061BFDD5A53DAE48D5435
_RDATA 0x00792000 45,872 bytes 46,080 bytes 6.91 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 30ACC5DD2300E716804EE5BD58AF9AE9
.rsrc 0x0079e000 173,744 bytes 174,080 bytes 5.51 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ D448E9C543B37407E10AF6BD5314F40B
.reloc 0x007c9000 12,212 bytes 12,288 bytes 5.45 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 45D6BEA03C78CED5252A22F862CA6BE0
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 9 (173,209 bytes)
Resource Type Count Total Size Percentage
RT_ICON 8 173,091 bytes
99.9%
RT_GROUP_ICON 1 118 bytes
0.1%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for
/

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware