2 antivirus venders flagged
this file as malicious

Signature

Signed file, invalid signature

Last scanned

4 weeks ago

4 weeks ago

dll

CRC32	0xb15564ae
MD5	10005fa486018442e5b82bf6aecd2723
Magic	PE32+ executable (native) x86-64, for MS Windows
SHA1	40d35a5217aeecb4ffdef91d303711f45dc68ec3
SHA256	c149f3518f70b6705c07871383c6e9b6e4bb63f51d78c0d6fec83c6e4127b99e
SHA512	2c6122bda6105a7b6d1c1e3c6ec189990a5e58f43d1a60beb8f2d626a6d4a7adf223884ebe0dbebcae673c78cc84f44332bc309dadc9f1ca3460cc4338b7a877
SSDeep	1536:3zn68BaIvRS5mfzExafwqO1+EpEhkoKgCxSvFvAW5lVlyPiPT7Up:3z68BaIAm7Exa4aBx9Cx6vfFy
Size	86.16KB
TLSH	7b83be92c7551cc1eebbce3569e88723be70f8428770c2eb5215d1159f22bd2987c3a2
Packer	PE+(64): compiler: Microsoft Visual C/C++(2008 SP1)[-] PE+(64): linker: Microsoft Linker(9.0)[Driver64,signed]
TrID	56.5% (.EXE) Win64 Executable (generic) (10523/12/4) 11.0% (.ICL) Windows Icons Library (generic) (2059/9) 10.9% (.EXE) OS/2 Executable (generic) (2029/13) 10.7% (.EXE) Generic Win/DOS Executable (2002/3) 10.7% (.EXE) DOS Executable Generic (2000/1)
Tags	ProcessHacker vc dll

CharacterSet	Windows, Latin1
CodeSize	21.00KB
CompanyName	wj32
EntryPoint	0x9064
ExifToolVersionNumber	12.96
FileDescription	KProcessHacker
FileFlags	(none)
FileFlagsMask	0x003f
FileOs	Win32
FileSize	88 kB
FileSubtype	7
FileType	Win64 EXE
FileTypeExtension	exe
FileVersion	3.0
FileVersionNumber	3.0.0.0
ImageFileCharacteristics	Executable, Large address aware
ImageVersion	6.1
InitializedDataSize	5.50KB
LanguageCode	English (U.S.)
LegalCopyright	Licensed under the GNU GPL, v3.
LinkerVersion	9.0
MachineType	AMD AMD64
MimeType	application/octet-stream
ObjectFileType	Driver
OriginalFileName	kprocesshacker.sys
OsVersion	6.1
PeType	PE32+
ProductName	KProcessHacker
ProductVersion	3.0
ProductVersionNumber	3.0.0.0
Subsystem	Native
SubsystemVersion	6.1
UninitializedDataSize	0

Published	Name	Source	Country
2024-10-22 23:41:32	c149f3518f70b6705c07871383c6e9b6e4bb63f51d78c0d6fec83c6e4127b99e	web	N/A