| 文件名 | Setup_es-ES_WW4YF-NXTRC-XD9KX-GFB9D-8MCW3_2024.exe |
| 文件类型 |
PE32+ executable (console) x86-64, for MS Windows
|
| 扫描器版本 | 1.0.231.174 |
| 数据库版本 | 2025-12-25 21:00:33 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
bc96012ff8054386dca73b5edbf507f0
|
|
| SHA1 |
d5096d93d073ef8d0b6cec5ec3dcac60e97a0459
|
|
| SHA256 |
c1ec39d95e6de7bd09f66e1eb7d4d2cedf3b0b33dc8281382743e0f9e76db1a6
|
|
| SHA512 |
e5942adb09c63b19a2a9e26de22a31f009f02fdbe454af855f661b555f2a50312dc393c185cd70684bd7206dd99e6a4e6d651ad5ee9ed859c086ded66f8f5b8d
|
|
| ImpHash |
4b1892ce4fbcfcf064c6f69d693fc6a5
|
| 图标 |
哈希: cf8b3d44cc80ac3d3f5b2c3f6848133a
模糊: 71fcd2e860bbcd562ce257f969072383 dHash: e0c8ccc6c6c6c0e0 |
| 映像基址 | 0x140000000 |
| 入口点 | 0x1405c98b0 |
| 编译时间 | 2025-03-15 02:55:03 |
| 校验和 | 0x00df9b7b (实际: 0x00df9b7b) |
| 操作系统版本 | 6.0 |
| PEiD 签名 |
PE32+ executable (console) x86-64, for MS Windows
|
| PDB 路径 | D:\a\_work\1\s\artifacts\obj\coreclr\windows.x64.Release\Corehost.Static\singlefilehost.pdb |
| 数字签名 | An error occurred while validating the countersignature: The root Certum Trusted Network CA 2 lists its extended key usages, but {'time_stamping'} are not present |
| 导入 | 17 库 |
| 导出 | 5 函数 |
| 资源 | 10 资源 |
| 节 | 10 节 |
| Translation | 0x0000 0x04b0 |
| CompanyName | Office_Deployment_Tool |
| FileDescription | Office_Deployment_Tool |
| FileVersion | 1.0.0.0 |
| InternalName | Office_Deployment_Tool.dll |
| LegalCopyright | |
| OriginalFilename | Office_Deployment_Tool.dll |
| ProductName | Office_Deployment_Tool |
| ProductVersion | 1.0.0+feeb4209db0e94959c16fe17de057605f99413c8 |
| Assembly Version | 1.0.0.0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
6,371,612 bytes | 6,371,840 bytes | 6.45 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
80BF0F853DB1F0A796C6B1C857467612 |
.CLR_UEF |
0x00615000 |
221 bytes | 512 bytes | 3.10 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
540F4A8B81FEEA585245D5ED6423A625 |
.rdata |
0x00616000 |
1,558,114 bytes | 1,558,528 bytes | 5.66 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
3CC0524FF4ADC18DE24042932E2F74A9 |
.data |
0x00793000 |
131,028 bytes | 38,912 bytes | 3.33 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
19AAC5B31A3EA9CF3B5089CB3FA43B0E |
.pdata |
0x007b3000 |
221,160 bytes | 221,184 bytes | 6.51 (压缩) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
BCC30C301C87592088BA1A74F2770514 |
.didat |
0x007e9000 |
56 bytes | 512 bytes | 0.43 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
89BDD1079AD6092AD6E20BAF117532C0 |
Section |
0x007ea000 |
8 bytes | 512 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
BF619EAC0CDF3F68D496EA9344137E8B |
_RDATA |
0x007eb000 |
78,344 bytes | 78,848 bytes | 5.48 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
617430A8CD708DDA1865FEE2910D8A1A |
.rsrc |
0x007ff000 |
1,431,428 bytes | 1,431,552 bytes | 6.22 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
B3E493B03EE2547BD4B3342B34960538 |
.reloc |
0x0095d000 |
32,296 bytes | 32,768 bytes | 5.45 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
20082470B1A239F83DE2B2DAB7B27921 |
1 检测到较高熵(≥6.5)的节 - 可能存在压缩
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| RT_ICON | 4 | 82,656 字节 | |
| RT_RCDATA | 3 | 1,343,600 字节 | |
| RT_GROUP_ICON | 1 | 62 字节 | |
| RT_VERSION | 1 | 928 字节 | |
| RT_MANIFEST | 1 | 3,411 字节 |
| 产品 | Office_Deployment_Tool |
| 描述 | Office_Deployment_Tool |
| 文件版本 | 1.0.0.0 |
| 原始名称 | Office_Deployment_Tool.dll |
| 签名日期 | 10:45 PM 04/27/2025 (242 天前) |
| 验证状态 | Signed |
| 签名者 | AGM Software OÜ; Certum Extended Validation Code Signing 2021 CA; Certum Trusted Network CA 2; Certum Trusted Network CA |
| 副签名者 | Certum Timestamp 2025; Certum Timestamping 2021 CA; Certum Trusted Network CA 2; Certum Trusted Network CA |
| 内部名称 | Office_Deployment_Tool.dll |
33 00 00 05 B3 02 17 FC 2A 4C 56 98 3B 00 00 00 00 05 B361 0C 52 4C 00 00 00 00 00 0333 00 00 02 01 D1 45 59 98 10 CC 42 4F 00 01 00 00 02 0133 00 00 00 15 C5 E7 6B 9E 02 9B 49 99 00 00 00 00 00 151B B5 8F 25 2A DF 23 00 49 28 C9 AE 3D 7E ED 279E 9C 04 F6 55 A8 B4 A7 02 6D 49 8C 6C 78 8D AAE7 FF 69 C7 3B 35 CE 4B 91 26 D8 74 7C 68 A5 87BB F0 CC B5 B7 B8 31 FD 21 AE 32 77 8A E4 0C 8904 51 56 00 AF 94 B0 95 1F B6 28 12 AD D4 70 B6✓ 此文件已进行数字签名,证书链已验证。
An error occurred while validating the countersignature: The root Certum Trusted Network CA 2 lists its extended key usages, but {'time_stamping'} are not present
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
保持无恶意软件:使用 Gridinsoft 反恶意软件 保护您的 PC
Gridinsoft 反恶意软件正是如此——提供强大、用户友好的解决方案,让您安心,并不断更新以应对最新威胁。由网络安全专家设计,它提供实时保护和轻松删除恶意软件。这不仅仅是检测威胁;它是通过不间断的安全来增强您的数字生活。试一试,体验无忧浏览的感觉!
