| 文件名 | ConfigureDefender.exe |
| 文件类型 |
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
| 扫描器版本 | 1.0.223.174 |
| 数据库版本 | 2025-08-31 15:00:46 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
3938109512868137116007342f7e92e3
|
|
| SHA1 |
3c9eb6355e9a7ed074d51e600477df4787736865
|
|
| SHA256 |
097599577fee448b60d03f3aa1fb36f4553751ce1559acce3bb172cef4803958
|
|
| SHA512 |
a1c33ac277bcefee66c7c2e34e24fd6327c9b3afce68c88f3bcda1250a203a072aeb75469b2a937d39b70c67639aa77db44b49e20a553769ea6a0604b47bdbc7
|
|
| ImpHash |
56a78d55f3f7af51443e58e0ce2fb5f6
|
| 图标 |
哈希: c38bd867046076aa10103282fe3c4fbe
模糊: ceda1606d292265b218e9e6b8d0b6d29 dHash: 0e7171596d71b24c |
| 映像基址 | 0x00400000 |
| 入口点 | 0x0040352d |
| 编译时间 | 2021-09-25 21:57:46 |
| 校验和 | 0x002527f3 (实际: 0x002527f3) |
| 操作系统版本 | 4.0 |
| PEiD 签名 |
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
| 数字签名 | An error occurred while validating the countersignature: The root Certum Trusted Network CA 2 lists its extended key usages, but {'time_stamping'} are not present |
| 导入 |
7 库
ADVAPI32, SHELL32, ole32, COMCTL32, USER32, GDI32, KERNEL32 |
| 导出 | 0 函数 |
| 资源 | 12 资源 |
| 节 | 5 节 |
| FileDescription | Microsoft Defender Configurator |
| LegalCopyright | Copyright * Andrzej Pluta (@Andy Ful) |
| ProductName | ConfigureDefender |
| Translation | 0x0409 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
26,775 bytes | 27,136 bytes | 6.46 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
CE9DF19DF15AA7BFBC0A8D0AF0B841D0 |
.rdata |
0x00008000 |
5,286 bytes | 5,632 bytes | 5.02 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
A118375C929D970903C1204233B7583D |
.data |
0x0000a000 |
176,152 bytes | 1,536 bytes | 4.15 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
82A10C59A8679BB952FC8316070B8A6C |
.ndata |
0x00036000 |
69,632 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.rsrc |
0x00047000 |
372,768 bytes | 373,248 bytes | 2.27 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
FB9401604800032C9180EC1C5A43B4EE |
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| RT_ICON | 6 | 369,968 字节 | |
| RT_DIALOG | 3 | 636 字节 | |
| RT_GROUP_ICON | 1 | 90 字节 | |
| RT_VERSION | 1 | 504 字节 | |
| RT_MANIFEST | 1 | 841 字节 |
| 产品 | ConfigureDefender |
| 描述 | Microsoft Defender Configurator |
| 签名日期 | 10:38 AM 09/10/2024 (359 天前) |
| 验证状态 | Signed |
| 签名者 | Open Source Developer, Andrzej Pluta; Certum Code Signing 2021 CA; Certum Trusted Network CA 2; Certum Trusted Network CA |
| 副签名者 | Certum Timestamp 2023; Certum Timestamping 2021 CA; Certum Trusted Network CA 2; Certum Trusted Network CA |
| 版权 | Copyright * Andrzej Pluta (@Andy Ful) |
4D 24 D7 2B 35 F8 47 78 0C D9 84 DA E3 7D D1 9C99 A3 80 0A 26 55 3B 65 AB DC 6E 84 A6 B3 EA 3909 C5 CC F8 BB 66 7D 71 37 AA C1 59 80 06 CB 31E7 FF 69 C7 3B 35 CE 4B 91 26 D8 74 7C 68 A5 871B B5 8F 25 2A DF 23 00 49 28 C9 AE 3D 7E ED 27✓ 此文件已进行数字签名,证书链已验证。
An error occurred while validating the countersignature: The root Certum Trusted Network CA 2 lists its extended key usages, but {'time_stamping'} are not present
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
