GridinSoft Threat Intelligence
SentinelKeyW.dll threat report
GridinSoft Anti-Malware detection
Detected by GridinSoft before you download
The current ThreatInfo record shows this exact file hash detected as SUSP.XORed_MSDOS. Download GridinSoft Anti-Malware to scan the device, confirm whether this file is present, and remove the detected object if it is found.
- Detection name
- SUSP.XORed_MSDOS
- Recommended action
- Scan and remove
- Last analysis
- 2023-04-27 23:29:05 (3 years ago)
- File hash
- b5713ba60e3a0f4e5c56f47e21be4e1a
Why it matters
Why GridinSoft flags this file
GridinSoft identifies the sample as SUSP.XORed_MSDOS, part of the Susp threat category.
Suspicious files with signals that require additional review before trust. Related Susp reports help compare this file with nearby detections, publishers, and hashes.
First seen 2023-04-27 23:29:05 (3 years ago); latest analysis 2023-04-27 23:29:05 (3 years ago).
Company metadata: SafeNet, Inc.. Product metadata: Sentinel Keys.
ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.
Recommended action
What to do next
- Compare the MD5 above with the file found on the device.
- Check whether the file appears in the observed locations or under one of the alternate names.
- Run GridinSoft Anti-Malware to confirm the detection and remove the file if it is present. Review the Susp category for related samples and common context.
File context
SentinelKeyW.dll is a Windows file recorded in the ThreatInfo database. It is associated with Sentinel Keys. The reported company name is SafeNet, Inc.. The current detection status is SUSP.XORed_MSDOS, based on the latest analysis from 2023-04-27 23:29:05 (3 years ago). ThreatInfo groups this verdict with Susp reports for broader family-level investigation.
If SentinelKeyW.dll appears on your computer unexpectedly, treat it as suspicious. Check its location, digital signature, and recent system changes before allowing it to run. A full anti-malware scan is recommended when this file is detected as SUSP.XORed_MSDOS.
File Details
| Product Name: | Sentinel Keys |
| Company Name: | SafeNet, Inc. |
| MD5: | b5713ba60e3a0f4e5c56f47e21be4e1a |
| Size: | 2 MB |
| First Published: | 2023-04-27 23:29:05 (3 years ago) |
| Latest Published: | 2023-04-27 23:29:05 (3 years ago) |
| Status: | SUSP.XORed_MSDOS (on last analysis) | |
| Analysis Date: | 2023-04-27 23:29:05 (3 years ago) |
Detection screenshot
The screenshot is a visual record of a GridinSoft Anti-Malware detection for this sample. Use the hash and metadata above as the primary identifiers when comparing the file on your system.
Common Places:
| %programfiles% |
ThreatInfo has observed SentinelKeyW.dll in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.
Geographic signal
Observed country distribution
ThreatInfo has seen SentinelKeyW.dll across 1 countries. Use this signal to compare local evidence with where the sample is most often reported.
The strongest geographic signal for this file is Algeria with 100.0% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.
OS Version:
The most common operating system signal for SentinelKeyW.dll is Windows 10 with 100.0% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.
Analysis
SentinelKeyW.dll is identified as pe for 32-bit systems. The subsystem is Windows GUI. PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.
PE Sections:
Section layout highlights raw-size concentration, repeated names, packer markers, and hashes that can be compared across related samples.
365f32312f0ec2f6dd311e395e6fa07f
dd6aaeb8eb853df14df75817e126f544
e2c156a7d096cf9de735cbd7670de4ee
ebdc2577b4a5f0d0170d7cfd9823200d
6593df777ad3ec91e1f7cb207a71269f
3ecd87506952372a20742f69c3ce9057
9e370b33b033378e4c5d16d766960af5
27f4ac5dd3a11b63369f57839e9ae817
fef39c903149480db792e967e056f77f
c3aebe7f128ebd423c083cafcee694f3
555889d1e40e707ededbc10809c53d90
b87d310065b7f39c0a6efcdf117ad75b
6ab06bb142163fa780704223394aedf0
f55489ac108bbfc44e026fa3bfea2644
5439a64d198b999e5f6aab2b02f887f1
f841b4104f3b215e4d8b151b090307be
b51565b6c6141137fcb2b9f3fb2b6273
69184f74a77ad54c2dbcfe5e1089596b
5031020bb81556faf49b93d536d583eb
e5860702aa2ed07434cadd22affbfbc4
b02dc9773be8decf5691528c04012609
9298b05fc9bfc17ea12237e372ae28b0
942d4873094c35970dc14cf564399974
fab8db557a322a5ce2d3a5d3ef3660cf
a01cb045f81e444f3393398c77098ec8
ef55f49319bd06ded58ba910a2cddc1e
e4356fcf837a138f6a21c73dd04db0d3
d6a5b6e0dd8ee761a3bc6d88fef76123
90d50b6e5dc6e8f22a9fc1bebfc9bfed
ca0e9131358525877921519a28b69d5f
b5b7f54107de7bfc7771ca81b5aa48fd
ea7f66501d4d71db3390f0131683d418
8db7e02f73734820ca959e0051643cc7
d6b2b927a75bf94f1782a786db96e803
3a11993fdcd9f2bfe529680e1ceabb23
e3388c80b72dc2f77fd3edbaffe8f8ec
6d5b4ff19646f860818d3a38dc253f5c
82d04cb7626627441e955f630cca8199
51aca6f56545c4fd004ce94058bb6412
bfde56178a9350de1044980299812162
74eda94a9034f067fa8ec668aadd9a21
2f1fbdaa5d17a019b2f3b70d9b969c3b
100092bb9781ab746c530821ad4fa42f
ae92f0399d24211cbf3db8e2bbb8326c
d6a0e945b2a0b2bc731edbd4c0042eb6
60261dec220f7ef8fc2d78c790ede2c4
1e8ce1c049426ff32f87d02546793597
46321aea9a0bfee566f5574cef8fb038
1bbbc7b751d7d9a654a6c5aabc7bd1a0
c3164fd74d12f97bf2c844e7045571d4
591d78cecef30b63b9bedef8d92a2d72
fd307124517b09bbe6240df3b1009144
PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.
Report conclusion
GridinSoft detects this file as SUSP.XORed_MSDOS
This report identifies SentinelKeyW.dll by MD5 b5713ba60e3a0f4e5c56f47e21be4e1a. It is part of the Susp report group. If the same file is present on your device, scan the system and remove the detected object after confirming the hash and location.