1 antivirus venders flagged
this file as malicious

Signature

Signed file, invalid signature

Last scanned

4 weeks ago

4 weeks ago

dll

CRC32	0xa9e739ff
MD5	a6785a0271975346f9f0b7bc7ccb21ac
Magic	PE32+ executable (native) x86-64, for MS Windows
SHA1	2a3b561c144fc4ec168da98f4ebc59996cc6a6b6
SHA256	1f4135a7725ef3bd51a88c140895b902aa665afdb3b8493b2b6f81d61a42b7d3
SHA512	d8427000e1de526d5d2c7342b752a824007bf08ae129ce4b3996f90a0cf09ccb81812a327c6ef077ce95d9b2090e01f16b2e210ecbf6726528b25d526bb85ea8
SSDeep	768:ZkCOeb2Yg5KY6VgQqdzfVJdf/aEB2zBdZpsQ/Kg589z1hEn:nHn68BCQ/Rn
Size	44.15KB
TLSH	95134942c7551cc6eebbce3965e89627ff30b8428730c2eb1215c0159f62be2a978356
Packer	PE+(64): compiler: Microsoft Visual C/C++(2008 SP1)[-] PE+(64): linker: Microsoft Linker(9.0)[Driver64,signed]
TrID	56.5% (.EXE) Win64 Executable (generic) (10523/12/4) 11.0% (.ICL) Windows Icons Library (generic) (2059/9) 10.9% (.EXE) OS/2 Executable (generic) (2029/13) 10.7% (.EXE) Generic Win/DOS Executable (2002/3) 10.7% (.EXE) DOS Executable Generic (2000/1)
Tags	ProcessHacker vc dll

CharacterSet	Windows, Latin1
CodeSize	21.00KB
CompanyName	wj32
EntryPoint	0x9064
ExifToolVersionNumber	12.96
FileDescription	KBrocessRacker
FileFlags	(none)
FileFlagsMask	0x003f
FileOs	Win32
FileSize	45 kB
FileSubtype	7
FileType	Win64 EXE
FileTypeExtension	exe
FileVersion	3.0
FileVersionNumber	3.0.0.0
ImageFileCharacteristics	Executable, Large address aware
ImageVersion	6.1
InitializedDataSize	5.50KB
LanguageCode	English (U.S.)
LegalCopyright	Licensed under the GNU GPL, v3.
LinkerVersion	9.0
MachineType	AMD AMD64
MimeType	application/octet-stream
ObjectFileType	Driver
OriginalFileName	kBrocessRacker.sys
OsVersion	6.1
PeType	PE32+
ProductName	KBrocessRacker
ProductVersion	3.0
ProductVersionNumber	3.0.0.0
Subsystem	Native
SubsystemVersion	6.1
UninitializedDataSize	0

Published	Name	Source	Country
2024-10-22 23:39:41	1f4135a7725ef3bd51a88c140895b902aa665afdb3b8493b2b6f81d61a42b7d3	web	N/A