2 antivirus venders flagged
this file as malicious

Signature

Signed file, invalid signature

Last scanned

4 weeks ago

4 weeks ago

dll

CRC32	0x1acc6fc6
MD5	117c5b2c5b7824d095f4600c41b89a9a
Magic	PE32+ executable (native) x86-64, for MS Windows
SHA1	bb36e202044bf1c0d3e594bda5cf53ae8d8b339f
SHA256	27d33518663048887dec2ad823e39a36d704c16ec07a8653b82a9cddd2ba1da5
SHA512	5565aaa32f9a2cd86642a308fe1f8a85a28baede7d359f08204bdafbf5bf2cde68432ca8d2376f3b1274426c634cb77d1cea964aa773664225702c085b35469a
SSDeep	768:ZkCOeX2Yg5KY6VgQqdzfVJdf/aEB2zBdZp0IfKg589z1hEt:nzn68BaIfRt
Size	44.15KB
TLSH	f0134a42c7551cc6eebbce3965e89627ff30b8468730c2eb1215c0159f62be2a978356
Packer	PE+(64): compiler: Microsoft Visual C/C++(2008 SP1)[-] PE+(64): linker: Microsoft Linker(9.0)[Driver64,signed]
TrID	56.5% (.EXE) Win64 Executable (generic) (10523/12/4) 11.0% (.ICL) Windows Icons Library (generic) (2059/9) 10.9% (.EXE) OS/2 Executable (generic) (2029/13) 10.7% (.EXE) Generic Win/DOS Executable (2002/3) 10.7% (.EXE) DOS Executable Generic (2000/1)
Tags	ProcessHacker vc dll

CharacterSet	Windows, Latin1
CodeSize	21.00KB
CompanyName	wj32
EntryPoint	0x9064
ExifToolVersionNumber	12.96
FileDescription	KProcessHacker
FileFlags	(none)
FileFlagsMask	0x003f
FileOs	Win32
FileSize	45 kB
FileSubtype	7
FileType	Win64 EXE
FileTypeExtension	exe
FileVersion	3.0
FileVersionNumber	3.0.0.0
ImageFileCharacteristics	Executable, Large address aware
ImageVersion	6.1
InitializedDataSize	5.50KB
LanguageCode	English (U.S.)
LegalCopyright	Licensed under the GNU GPL, v3.
LinkerVersion	9.0
MachineType	AMD AMD64
MimeType	application/octet-stream
ObjectFileType	Driver
OriginalFileName	kprocesshacker.sys
OsVersion	6.1
PeType	PE32+
ProductName	KProcessHacker
ProductVersion	3.0
ProductVersionNumber	3.0.0.0
Subsystem	Native
SubsystemVersion	6.1
UninitializedDataSize	0

Published	Name	Source	Country
2024-10-22 23:41:06	27d33518663048887dec2ad823e39a36d704c16ec07a8653b82a9cddd2ba1da5	web	N/A