GridinSoft Threat Intelligence

qbshellicon2caf53b6.dll file report

Under review File reputation report

» File
File Details
Overview
Analysis

Status Under review

Identity 4298ef1f49d563b2190ae5783468a58c

Source GridinSoft ThreatInfo

MD5 4298ef1f49d563b2190ae5783468a58c

Latest seen 2021-02-14 04:35:55 (5 years ago)

First seen 2017-05-21 04:03:30 (8 years ago)

Size 200 KB

Publisher Tencent

Product Shell Icon Extension

Signed by Tencent Technology(Shenzhen) Company Limited

Analyst brief

What this report says

ThreatInfo has not assigned a final verdict to qbshellicon2caf53b6.dll. The metadata below can still help compare the file identity, origin, and observed behavior against a copy found on a device.

This page combines the detection verdict with file identity, publisher metadata, alternate names, observed paths, geography, OS signals, and PE details so the report reads as a triage record rather than a standalone download page.

Why it matters

Evidence available for this file

Detection

No final classification is available yet.

Timeline

First seen 2017-05-21 04:03:30 (8 years ago); latest analysis 2021-02-14 04:35:55 (5 years ago).

Publisher context

Company metadata: Tencent. Product metadata: Shell Icon Extension.

Digital signature

Signed by Tencent Technology(Shenzhen) Company Limited. The signature is reported as valid, but signed files can still be bundled or abused.

Aliases

This hash has appeared under multiple file names, which can happen with repackaging, bundling, or deliberate renaming.

Observed locations

ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.

Recommended action

What to do next

Use the hash and metadata below to verify the exact file identity.
Review publisher, signature, paths, and PE details for inconsistencies.
Run a local scan if the file appears unexpectedly or starts with Windows.

File context

qbshellicon2caf53b6.dll is a Windows file recorded in the ThreatInfo database. It is associated with Shell Icon Extension. The reported company name is Tencent. The current detection status is Undefined, based on the latest analysis from 2021-02-14 04:35:55 (5 years ago).

ThreatInfo does not have a final classification for this file yet. Use the technical details below to compare the hash, size, signature, and observed locations with the copy found on your device.

File Details

Main Info:

Product Name:	Shell Icon Extension
Company Name:	Tencent
MD5:	4298ef1f49d563b2190ae5783468a58c
Size:	200 KB
First Published:	2017-05-21 04:03:30 (8 years ago)
Latest Published:	2021-02-14 04:35:55 (5 years ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2021-02-14 04:35:55 (5 years ago)

Overview

Digital Signature

Signed By:	Tencent Technology(Shenzhen) Company Limited
Status:	Valid

The signature on qbshellicon2caf53b6.dll is reported as valid. A valid signature helps confirm publisher identity, but it does not automatically make the file safe if the installer was bundled, abused, or downloaded from an untrusted source.

Common Places:

%localappdata%\tencent\qqbrowser\user data\qbshellicon

%localappdata%\tencent\qqbrowser\user data\iconoverlay

%sysdrive%\windows.old\users\windows 10 gamer\appdata\local

%sysdrive%\adwcleaner\quarantine\files\fdxdhsxmiybpcvitrwwuydpmgenzfkcp\qqbrowser\user data\qbshellicon

%sysdrive%\adwcleaner\quarantine\files\iryimxpvzfpkybekokpalhadmnzhoker\qqbrowser\user data\qbshellicon

%appdata%\tencent\qqbrowser\shell

%sysdrive%\$sysreset\oldos\users\firda\appdata\local\tencent\qqbrowser\user data\qbshellicon

%sysdrive%\adwcleaner\quarantine\rywtiizs2t\qqbrowser\user data\qbshellicon

%localappdata%\tencent\qqbrowser\user data

%sysdrive%\adwcleaner\quarantine\8dydd3ojxs\qqbrowser\user data

ThreatInfo has observed qbshellicon2caf53b6.dll in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.

File Names:

597 observed names

QBShellIcon200464a3.dll qbshellicon928ba.dll QBShellIcon145fac.dll shicqio7e3b9.dll shicqio7a830.dll shicqoi7b135.dll shicqoi863ff.dll QBShellIcon86576.dll QBShellIcon1a2da8e5.dll sihcqio3e33c77.dll sihcqio58d50.dll sihcqio272e8b5.dll shicqio7fdfd.dll sihcqio5b5d9b9.dll sihcqio28dfe29.dll sihcqio283641c.dll shicqioa4dc6dd.dll sihcqio2e88cd3.dll sihcqiobde1ca.dll sihcqiob3fda3.dll qbshellicon485313.dll qbshellicon7caec.dll QBShellIcon46eef1.dll QBShellIcon54ff7ac.dll sihcqio805f8.dll sihcqio8032b.dll QBShellIcon53878a8.dll qbshellicon25288245.dll QBShellIcon517d7df.dll qbshellicon14bb5648.dll QBShellIcon1371f980.dll sihcqio8d8c5.dll sihcqioa5a11f.dll QBShellIcon48248eed.dll QBShellIcon12386f0.dll qbshellicon10ac009.dll qbshellicon649b4fd.dll QBShellIcon47711f.dll QBShellIcon7af80.dll QBShellIcon7300ad.dll QBShellIcon5c3d8b6.dll shicqoi77b67.dll qbshellicon7189f8.dll qbshellicon11646b5.dll QBShellIcon1c4edb.dll qbshellicon24879ea.dll qbshellicon1ebfd5.dll qbshellicon78f2e.dll sihcqio88a73.dll qbshellicon9be6c4.dll qbshellicon2a6dd0.dll qbshellicon1f7fccc3.dll shicqio778f6.dll shicqio779b1.dll qiconsh77703.dll QBShellIcon5300da0.dll qbshellicon794a0.dll QBShellIcon4077335.dll QBShellIconbd7cc1.dll QBShellIcon7143d78.dll QBShellIcon72281f.dll qbshelliconadb5da.dll qbshellicon87a3d.dll qbshellicon422491.dll QBShellIcon251709.dll QBShellIcon9e87dc.dll QBShellIcon3742aae.dll QBShellIcon804ac.dll shicqio285a6973.dll shicqio1d95ccf1.dll shicqiob10e6c7.dll sihcqiofd86725.dll q_shicon85b5e19c.dll sihcqio248f6.dll sihcqioa4b1f8d.dll sihcqio7271003.dll sihcqio794afcb.dll sihcqio65016c.dll shicqio1249ddbd.dll sihcqio131299ec.dll shicqio9860b77.dll shicqio4f5f485.dll sihcqio491d0a.dll sihcqio2008b5d.dll sihcqiof66d00b.dll sihcqio6b90d3b.dll shicqio196a8242.dll sihcqio26e4eba.dll shicqio3c51576.dll shicqio43286.dll shicqio1f2ee4c9.dll shicqio245cc5e6.dll shicqio238925b0.dll sihcqio22404742.dll sihcqio2dc3417.dll shicqio7f8cbf8.dll shicqio1a1c38e3.dll sihcqio4c31b7d.dll sihcqio8cb2054.dll shicqio1ce523d8.dll shicqio5b55c17.dll sihcqiof34f1.dll shicqio894d671.dll shicqio1095abc8.dll shicqio283f28e3.dll sihcqio245379e4.dll sihcqio18b80f85.dll shicqio178d7fc2.dll sihcqiodfc390c.dll QBShellIcon471d70.dll qbshellicon29ffb5.dll sihcqio7c3fa.dll QBShellIcon1b0099.dll shicqio2b8c922.dll sihcqio677ea1.dll shicqio318bbba5.dll shicqio30cc54cd.dll shicqoi7ada3.dll shicqoi7aedb.dll shicqio378a3081.dll shicqio33d7895d.dll sihcqio77a0f.dll QBShellIcon616eda.dll QBShellIcon11cfb64.dll shicqoiacfb72.dll shicqoi8a36d.dll qbshelliconc7aca3.dll qbshellicon6f88259.dll shicqoi2dc71a93.dll sihcqio259de.dll shicqio5c39.dll shicqoi3389257e.dll sihcqio57c4.dll shicqio7407ef0.dll shicqio59a9.dll sihcqio77cad.dll shicqio56f9.dll shicqio5822.dll shicqio5d14.dll sihcqio59e7.dll shicqio5534.dll shicqio53cd.dll shicqio59f7.dll shicqio590c.dll sihcqio5757.dll shicqoi791fd.dll shicqio5cef2b1.dll shicqio5aa3.dll sihcqio75060.dll shicqoi1691ad73.dll shicqoi2878b32c.dll shicqio63ccfef.dll shicqoi2e2a43e4.dll shicqoi23c2a163.dll shicqoi2279dd.dll shicqio53ad.dll shicqoi16f8dc.dll shicqoi48144b1.dll shicqoi199add97.dll shicqoi1ec733af.dll shicqio543a.dll qbshellicon278791.dll qbshelliconf500b.dll QBShellIcond4e651.dll shicqoi7814f.dll qbshellicon1eb4295.dll qbshellicon1de300.dll QBShellIconf955cfa.dll shicqoi38ba066d.dll qbshellicon5e8c32f6.dll QBShellIcon78aaa.dll QBShellIcon6a4931.dll QBShellIcon57633a2.dll qbshellicon93cf419.dll QBShellIconb5cee5.dll QBShellIcon1edb6481.dll QBShellIcon50d930.dll qbshellicon784ae.dll qbshellicon1ab1240.dll QBShellIcon3c117e.dll QBShellIcon90b9cf.dll QBShellIcona15025.dll qbshellicon5a225d5.dll qbshellicon23d8e1.dll QBShellIcon293df97d.dll QBShellIcon358e30f.dll qbshellicon652714.dll qbshellicon5065341.dll QBShellIcon93cc2e.dll sihcqio10843d81.dll qbshelliconc0b582e.dll QBShellIcon52a6bb.dll qbshellicon3015c7b.dll QBShellIcon5bbdc7.dll QBShellIcon29afcc7.dll QBShellIcon85772.dll QBShellIcon27ff55.dll QBShellIcon8d097.dll QBShellIcon3f7484.dll qbshellicone5f59b2.dll QBShellIcon203cc1.dll QBShellIcon2100a729.dll QBShellIcon24a4cf3.dll QBShellIcon24480fd.dll qbshellicon8263465c.dll qbshellicon9ff83.dll QBShellIcon1469e51.dll sihcqioaa0ff.dll qbshellicon3ef8a1.dll qbshellicon26582e.dll qbshelliconb87fc7fc.dll qbshellicon7f470.dll QBShellIcona5f450.dll QBShellIconfe5a80.dll qbshellicon29f81f4f.dll QBShellIcone1f403.dll QBShellIcon83a9f.dll QBShellIconca90a3c.dll QBShellIcon101e074.dll qbshellicon1f3ad6c5.dll qbshellicon769a2bd.dll qbshellicon22840e.dll qbshelliconb32f1.dll qbshellicon2427358e.dll QBShellIcon8bc2cff.dll qbshellicon3a3c8be.dll qbshellicon6103d8b.dll QBShellIconea488.dll QBShellIcon2d9bb76c.dll QBShellIcon8471d.dll qbshellicon2544bb4e.dll qbshellicon5d4f459.dll QBShellIcon52b941.dll qbshellicon413992.dll QBShellIcon87aba.dll QBShellIcon55dff2.dll QBShellIconabf86.dll QBShellIcon23e7353.dll QBShellIcon8d663.dll QBShellIcona5841.dll qbshellicon519cc2.dll QBShellIcon202f846.dll QBShellIcon7f47b.dll qbshellicon5a2a94a.dll qbshellicon177fa7d.dll QBShellIcon26d74c6.dll QBShellIcon1241aef4.dll QBShellIcon787ac.dll shicqoi7a0b1.dll shicqoi7700ad.dll qbshellicon3864f0cf.dll qbshellicon13f0cc.dll sihcqio7d426.dll QBShellIcon7692d.dll QBShellIcon7b154.dll qbshellicon77196.dll QBShellIcon7725f.dll QBShellIconf813d.dll QBShellIcon1e44da37.dll QBShellIcon2472ff1b.dll qbshellicon15fbef67.dll QBShellIcon391e517.dll QBShellIcon140adc.dll QBShellIcon19d73c.dll qbshellicond22e65.dll qbshellicon2843387.dll QBShellIcon892e68.dll qiconsh76d14.dll QBShellIcon1860f954.dll qbshellicon2fe913.dll QBShellIcon159fefd.dll qbshellicondeca8b.dll shicqoi8c16a.dll shicqoi22e9bdc.dll shicqoi103e18.dll shicqoi8c532.dll shicqoi90c4f.dll shicqoi4423d.dll shicqio395522.dll shicqoi8acc2.dll shicqoi1138bc.dll shicqoi8cc24.dll shicqoi22e5b25.dll shicqoi8ace1.dll shicqoi29b73.dll shicqoi8a84f.dll shicqoi22e468c.dll shicqoi2b4fc.dll shicqoi22ea79f.dll shicqoi889b8.dll shicqoi22e1de7.dll shicqoi4ed1c.dll shicqoi90f1d.dll shicqoi8d642.dll shicqoi4053d.dll shicqoi89edd.dll shicqoi8ce46.dll shicqoi8f611.dll shicqoi580c3.dll shicqoia0a6b.dll shicqoi7361ef.dll shicqoi88e59.dll shicqoi8c503.dll shicqoia5ca0.dll shicqoi8fb20.dll shicqoi8a7a4.dll shicqoi8e7a0.dll shicqoi8eafa.dll shicqoi8bb91.dll shicqoi22e9cb7.dll shicqoi3f018.dll shicqoi22ea7ce.dll shicqoi58381.dll shicqoi8affd.dll shicqoi8f298.dll shicqoi672fd.dll shicqoi22e4831.dll shicqoi22e557a.dll shicqio2309f55.dll shicqoia1489.dll shicqoi22e34c1.dll shicqoi86f93.dll shicqoi22ea944.dll shicqoi9202d.dll shicqoi8bfa6.dll shicqoi22e7836.dll shicqoi8e197.dll shicqio54d73.dll shicqoi22ea5bb.dll shicqoi22eb391.dll shicqoiac2f0.dll shicqoi22e9eb9.dll shicqoi22e689c.dll shicqoi22e4dfb.dll shicqoi8f92c.dll shicqoi22e6ef3.dll shicqoi8ca7f.dll shicqoi51c56.dll shicqoi8b01c.dll shicqoi8c947.dll shicqoi8b8e2.dll shicqoi22e523f.dll shicqoi8a054.dll shicqoi8d355.dll shicqoi8c274.dll shicqoi8a228.dll shicqoi22e7402.dll shicqoi8c9c4.dll shicqoi22e0a47.dll shicqoi4a68b.dll shicqoi8908b.dll shicqoi3d3350.dll shicqoi22e6d0f.dll shicqoi8dd63.dll shicqoi22e304e.dll shicqoi907fb.dll shicqoi1a1ae0.dll shicqoi22e7691.dll shicqoi8ea6d.dll QBShellIcona7c71c.dll qbshellicon869e9.dll shicqoi7e482.dll shicqoib5dddc8.dll shicqoi1a084642.dll shicqoi15bdff8.dll shicqoi61186e1.dll shicqoi31d6f238.dll shicqoi2446abd1.dll shicqoi1479f940.dll shicqoi227908bd.dll shicqoi1dd65c88.dll shicqoi9daf745.dll shicqoif406276.dll shicqoi1d783d22.dll shicqoi18409026.dll shicqoif62f809.dll shicqoi13b2bcfa.dll shicqoiffc7aae.dll shicqoie474f47.dll shicqoi11c08af4.dll shicqoi39f3f.dll shicqoi293393cf.dll shicqoi8f5e907.dll shicqoi1e9b9491.dll shicqoi4930acd.dll shicqoi2f726f6d.dll shicqoia9390f6.dll shicqoi38727aef.dll shicqoi1af6d260.dll shicqoi13985d25.dll shicqoi2e0ca8ca.dll shicqoi2d2a5f49.dll shicqoi34ded319.dll shicqoi2e77a835.dll shicqoi22d6637b.dll shicqoi1f41e4dd.dll shicqoif28b31b.dll shicqoi636e77.dll shicqoi3725012.dll shicqoi28e4534b.dll shicqoi4c3ab69.dll shicqoi8ec03e2.dll shicqoi52d36a3.dll shicqoi153eba06.dll shicqoiff549ad.dll shicqoi77731.dll shicqoi23576750.dll shicqoi29e5c628.dll shicqoi14f89d6a.dll shicqoi28920f0e.dll shicqoi77434.dll shicqoia5f312f.dll shicqoi76d4b7.dll shicqoia859ef4.dll shicqoi7755c.dll shicqoi3301625e.dll shicqoi223b8c.dll shicqoi1e485bb2.dll shicqoi2e02ffb4.dll shicqoie9906e4.dll shicqoi787cb.dll shicqoi1f2d22a7.dll shicqoi1f2fcbde.dll shicqoi1f1db177.dll shicqoi9a07464.dll shicqoi19cefc3e.dll shicqoi523fa51.dll shicqoi3c6ebfd7.dll shicqoi33233657.dll shicqoi1ada4839.dll shicqoi28ae1.dll shicqio3e8e96.dll shicqoi4437573.dll shicqoi2391e59e.dll shicqoi14d246b8.dll shicqoi194c5ab7.dll shicqoi9d3e100.dll shicqoi131c7ffb.dll shicqoi150d430f.dll shicqoi1a7f8a7c.dll shicqoi19298f10.dll shicqoi32104d82.dll shicqoi3b4ea487.dll shicqoi1f574d16.dll shicqoi2a9aede3.dll shicqoi771d2.dll shicqoi2469c26c.dll shicqoi55e0ae.dll shicqoi2413dedf.dll shicqoi367061ed.dll shicqio7727e.dll shicqoifd9b521.dll shicqoi780a7.dll shicqoiad8ea90.dll shicqoi56c086d.dll shicqoia82e35e.dll shicqoi14ac1c65.dll shicqoi38b37c99.dll shicqoi442a2c2.dll shicqoi31406.dll shicqoi7757c.dll shicqoi373e84ec.dll QBShellIcon77f5c.dll qbshellicon7a2e5.dll QBShellIcon1c4cc6b.dll shicqoi1ef7a693.dll qbshellicond37330f.dll QBShellIcon5374652.dll qbshellicon133ac2c6.dll qbshellicon224b47c9.dll qbshellicon1165db.dll qbshelliconf77e48.dll QBShellIcon7e4ef.dll QBShellIcon9110b.dll qbshellicon21970647.dll QBShellIcon1882d56.dll qbshellicon792d7.dll qbshellicon255f33.dll QBShellIcon7c995.dll qbshellicon687af89.dll qbshellicon70a9fa.dll qbshellicon1e95ab6.dll QBShellIcon847bb6.dll qbshellicon572103f.dll QBShellIcon7784a.dll qbshellicon86066c.dll qbshellicon3a379060.dll shicqoi22d022d.dll QBShellIcon187c01.dll qbshellicon9261df8.dll QBShellIcon7108a5.dll.quarantined QBShellIcon93b59b.dll shicqoi7dc4a.dll shicqio5142861.dll shicqiodf4000.dll shicqoi7f362.dll shicqio1fe7e5d.dll shicqiodafd75.dll shicqio14d2a9f.dll qbshellicon545ed3.dll qbshellicon87425.dll qbshellicone1170.dll qbshellicon771b3.dll QBShellIcon3f010432.dll QBShellIconbc689.dll qbshellicon17f099.dll qbshellicon414c6f49.dll qbshellicon158074bf.dll QBShellIcon78097.dll qbshellicon7bfd5.dll QBShellIcon7850df.dll qbshellicon181867e0.dll qbshellicon9cc43.dll shicqoi779b2.dll shicqoi2ffa3bf.dll qbshellicon7ec90.dll QBShellIconafac39a.dll QBShellIcon366664.dll sihcqio8d2721.dll qbshellicon508a2889.dll qbshellicon1d77d2.dll qbshellicon1d256e09.dll QBShellIcon2979254.dll qbshellicond8fbd90.dll qbshellicon7e5cc.dll qbshellicon674b7a55.dll QBShellIcon119528.dll qbshellicon155ccfee.dll QBShellIcon10087ca.dll qbshellicon3dad92fb.dll qbshellicon2a7d42.dll qbshellicon5430f79.dll qbshellicon69822b.dll QBShellIcond7699f.dll qbshellicondec216b.dll qbshellicon82f51207.dll QBShellIcon2d3916.dll QBShellIcon236cbb2.dll QBShellIcone14261.dll qiconsh7c235.dll QBShellIcon4a9415.dll QBShellIconb9430b.dll QBShellIcon1d15ada0.dll qbshellicon77140df.dll qbshellicon259036.dll qbshelliconb14895.dll qbshellicon7c3cb.dll shicqoi7f54726.dll qbshellicon4ecf8c6.dll qbshellicon3e0511f7.dll qbshellicon2b0a71a.dll qbshelliconbcb68.dll qbshellicon15e1b7.dll QBShellIcon9fe960.dll qbshellicon1b2ec59.dll QBShellIcon136fe8c3.dll QBShellIcona6ab781.dll qbshellicon13e882aa.dll QBShellIcond2626.dll QBShellIcone30a1ac.dll qbshellicon267f68.dll qbshellicon535628e.dll qbshellicon1b8d9e90.dll qbshellicon35c84e.dll qbshelliconea8d4bb.dll qbshellicon4e4d7b11.dll qbshellicon197f09.dll qbshellicon6277ba96.dll QBShellIcon154df5d.dll qbshelliconfd0cf1.dll qbshellicon191f01e.dll qbshellicon1331c2d.dll qbshellicon3aa19ee.dll qbshellicond5234.dll QBShellIcon67bad03.dll qbshelliconad08e0.dll QBShellIcon2302ab0d.dll qbshellicond795b2.dll qbshellicon799fd.dll qbshellicon1fa766.dll qbshellicon17f2987e.dll qbshellicon39659a.dll qbshellicon1c254b4c.dll QBShellIcon146a75.dll qbshelliconfcb61a.dll qbshellicon756b23.dll qbshellicon566b3a.dll qbshellicon97459.dll qbshelliconbc667.dll sihcqio7d36a0.dll qbshellicon3704dd09.dll QBShellIconb3024.dll qbshellicon811130be.dll qbshellicon4bc4aa.dll QBShellIcon19dbca67.dll QBShellIcon78ba4.dll qbshellicon2caf53b6.dll

This hash has been seen with multiple file names. Alternate names can appear when software is updated, copied between folders, packed by an installer, or deliberately renamed to avoid recognition. Compare the exact MD5 above before assuming two names refer to the same file.

Geographic signal

Observed country distribution

ThreatInfo has seen qbshellicon2caf53b6.dll across 36 countries. Use this signal to compare local evidence with where the sample is most often reported.

Top country China

Share 29.2%

Low High activity

Top observed countries

29.2%

28.7%

19.1%

5.2%

2.9%

The strongest geographic signal for this file is China with 29.2% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.

OS Version:

Windows 10 60.8%

Windows 7 35.5%

Windows 8.1 1.9%

Windows 8 0.8%

Windows Server 2012 R2 0.8%

Windows Server 2008 R2 0.1%

Windows Server 2016 0.1%

The most common operating system signal for qbshellicon2caf53b6.dll is Windows 10 with 60.8% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.

Analysis

PE Info:

qbshellicon2caf53b6.dll is identified as pe for 64-bit systems. The subsystem is Windows GUI. PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.

Format pe

Architecture 64-bit

Subsystem Windows GUI

Entry point 0x0000e19c

Image base 0x0000000180000000

PE Sections:

Sections 6

Raw data 198144

Section layout highlights raw-size concentration, repeated names, packer markers, and hashes that can be compared across related samples.

.text 110080 bytes · 55.6% of section data

MD5 600f2e25f7d0df93b2bd9ff2a2abbe67

.rdata 62976 bytes · 31.8% of section data

MD5 36d5ab4fc2fa60521811a1f188e71d3a

.data 9216 bytes · 4.7% of section data

MD5 947ad95aba7d9786fbaa2d35e4542a1a

.pdata 7168 bytes · 3.6% of section data

MD5 445f576f37de3415413268ec2ff1552f

.rsrc 5120 bytes · 2.6% of section data

MD5 0247dc82a92578e2ff8947a33e2aca38

.reloc 3584 bytes · 1.8% of section data

MD5 623584ac3601c87591cb13cd962078de

PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.

Report conclusion

This file is still under review

ThreatInfo has not assigned a final verdict yet. Compare the file hash, location, signature, and publisher before trusting the file on a production system.

Scan with GridinSoft Anti-Malware Use a local scan if the file origin or behavior is unclear. Check this hash on VirusTotal

Recommended next steps

Compare the local file MD5 with 4298ef1f49d563b2190ae5783468a58c.
Check the file path, publisher, and signature against the details in this report.
Run a GridinSoft scan if the source, path, or behavior looks unusual.