GridinSoft Threat Intelligence
helldivers2.exe threat report
GridinSoft Anti-Malware detection
Detected by GridinSoft before you download
The current ThreatInfo record shows this exact file hash detected as Trojan.Heur!. Download GridinSoft Anti-Malware to scan the device, confirm whether this file is present, and remove the detected object if it is found.
- Detection name
- Trojan.Heur!
- Recommended action
- Scan and remove
- Last analysis
- 2024-02-24 23:01:34 (2 years ago)
- File hash
- 133e4dc16d75a1db87ae908075a813b2
Why it matters
Why GridinSoft flags this file
GridinSoft identifies the sample as Trojan.Heur!, part of the Trojan threat category.
Malware disguised as legitimate software or delivered through deceptive packaging. Related Trojan reports help compare this file with nearby detections, publishers, and hashes.
First seen 2024-02-24 23:01:34 (2 years ago); latest analysis 2024-02-24 23:01:34 (2 years ago).
Company metadata: Arrowhead Game Studios AB. Product metadata: HELLDIVERS™ 2.
Signed by Arrowhead Game Studios AB. The signature is reported as valid, but signed files can still be bundled or abused.
ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.
Recommended action
What to do next
- Compare the MD5 above with the file found on the device.
- Check whether the file appears in the observed locations or under one of the alternate names.
- Run GridinSoft Anti-Malware to confirm the detection and remove the file if it is present. Review the Trojan category for related samples and common context.
File context
helldivers2.exe is a Windows file recorded in the ThreatInfo database. It is associated with HELLDIVERS™ 2. The reported company name is Arrowhead Game Studios AB. The current detection status is Trojan.Heur!, based on the latest analysis from 2024-02-24 23:01:34 (2 years ago). ThreatInfo groups this verdict with Trojan reports for broader family-level investigation.
If helldivers2.exe appears on your computer unexpectedly, treat it as suspicious. Check its location, digital signature, and recent system changes before allowing it to run. A full anti-malware scan is recommended when this file is detected as Trojan.Heur!.
File Details
| Product Name: | HELLDIVERS™ 2 |
| Company Name: | Arrowhead Game Studios AB |
| MD5: | 133e4dc16d75a1db87ae908075a813b2 |
| Size: | 13 MB |
| First Published: | 2024-02-24 23:01:34 (2 years ago) |
| Latest Published: | 2024-02-24 23:01:34 (2 years ago) |
| Status: | Trojan.Heur! (on last analysis) | |
| Analysis Date: | 2024-02-24 23:01:34 (2 years ago) |
Detection screenshot
The screenshot is a visual record of a GridinSoft Anti-Malware detection for this sample. Use the hash and metadata above as the primary identifiers when comparing the file on your system.
Overview
| Signed By: | Arrowhead Game Studios AB |
| Status: | Valid |
The signature on helldivers2.exe is reported as valid. A valid signature helps confirm publisher identity, but it does not automatically make the file safe if the installer was bundled, abused, or downloaded from an untrusted source.
Common Places:
| %programfiles%\steam\steamapps\common\helldivers 2 |
ThreatInfo has observed helldivers2.exe in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.
Geographic signal
Observed country distribution
ThreatInfo has seen helldivers2.exe across 1 countries. Use this signal to compare local evidence with where the sample is most often reported.
The strongest geographic signal for this file is France with 100.0% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.
OS Version:
The most common operating system signal for helldivers2.exe is Windows 10 with 100.0% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.
Analysis
helldivers2.exe is identified as pe for 64-bit systems. The subsystem is Windows GUI. PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.
PE Sections:
Section layout highlights raw-size concentration, repeated names, packer markers, and hashes that can be compared across related samples.
ce9bbd5f073f4c4c7367e9339e2bdcda
89f4c7d75710fc3cb17f0e3c98e42c54
c71fb3976785f916736a5ecb036e35f1
7d97a5cf314a054a6310ecf9b114c34d
cf204b92afecc227f60b8015dbafab66
6789083a559bfdd054d1d5fb0722814d
65b7730c98f725f59ec656f805059861
817a575749e3e678be6518ede2a9cca9
da31a65ee96cc40a611d97346c538588
a3a789345d76a4c531e68f87fb29cefb
d5e56d1129f5bfd8126bb29beb5d3925
869c90a669ba10d418861b727adb479a
6186a9d7c04954659a3f14fdbb322a12
f6fbbf13ba7a7293dc25bbfe9fedd85a
87902dce63b9e662525e2be3bcfbccbc
13d791057fceb42e31f3754752d2da64
d41d8cd98f00b204e9800998ecf8427e
22fcba3808111ad51e89c9e9f8a5c5cb
8ad20bede01c01f1a9331b1268814f6f
PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.
Report conclusion
GridinSoft detects this file as Trojan.Heur!
This report identifies helldivers2.exe by MD5 133e4dc16d75a1db87ae908075a813b2. It is part of the Trojan report group. If the same file is present on your device, scan the system and remove the detected object after confirming the hash and location.