| 文件名 | dopus.exe |
| 文件类型 |
Win32 EXE
|
| 魔术字节 | PE32+ executable (GUI) x86-64, for MS Windows |
| SSDEEP 哈希 |
196608:OUszvuWNlMqcC2fMyJc/4ivJInvZAxsxEKbTMHLkH/nQRtBEIo9ZpqnSYTQNyOnv:3WNlsC2fhJc/nvJIrFmSKtlGZpqn2NN
|
| 扫描器版本 | 1.0.179.174 |
| 数据库版本 | 2024-06-19 15:00:23 UTC |
被 38 个安全引擎检测到 - 需要谨慎
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
836ddf30d09b812d49b8de95844e9add
|
|
| SHA1 |
b12b8a31b8842cd12c7deed47cf25253a569e043
|
|
| SHA256 |
f989343fecca51d33d5f93f82be7cecad417422a46e9bcf80e5c464e66967510
|
|
| SHA512 |
954edee183f7f08b5d5429770987b51a331f8389c996e054b9378742ebc6c9b825efb77b03b089c33f5d6592c63fa369ee29266b1d25328cf7942eb84f7d6435
|
|
| ImpHash |
7f550e0b262f211d068fab85063c8893
|
| 图标 |
哈希: 2ef27c43109284d442f71b39ab233342
模糊: 62c2328dca86660f2a0298734e58412e dHash: 78ecfedacad46421 |
| 映像基址 | 0x140000000 |
| 入口点 | 0x142034410 |
| 编译时间 | 2024-04-15 01:36:39 |
| 校验和 | 0x00efbd1c (实际: 0x00efbd1c) |
| 操作系统版本 | 6.0 |
| PEiD 签名 |
PE32+ executable (GUI) x86-64, for MS Windows
|
| 数字签名 | Chain verification from CN=NVIDIA Corporation, OU=Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=NVIDIA Corporation, L=Santa Clara, ST=California, C=US (serial:90030604084993935290647585382629313013, sha1:579aec4489a2ca8a2a09df5dc0323634bd8b16b7) failed: The path could not be validated because intermediate certificate 1 expired 2020-02-07 23:59:59Z |
| 导入 |
2 库
COMCTL32, KERNEL32 |
| 导出 | 223 函数 |
| 资源 | 502 资源 |
| 节 | 3 节 |
| CompanyName | GP Software |
| FileDescription | Directory Opus |
| FileVersion | 13.5.0.0 |
| InternalName | dopus |
| LegalCopyright | Copyright © 1999-2024 GP Software |
| LegalTrademarks | Directory Opus, Opus, DOpus, DirOpus, OpusPC, PCOpus are trademarks of GP Software |
| OriginalFilename | dopus.exe |
| ProductName | Directory Opus |
| ProductVersion | 13.5.0.0 |
| Translation | 0x0c09 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
NEOM |
0x00001000 |
24,485,888 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
2024 |
0x0175b000 |
9,285,632 bytes | 9,282,048 bytes | 8.00 (打包/加密) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
941458029BCE55F0B3679220654071A3 |
.rsrc |
0x02036000 |
6,373,376 bytes | 6,372,864 bytes | 6.64 (压缩) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
9295BC4BB4D6EDD3E37D4ECAC02770F5 |
1 检测到高熵(≥7.5)的节 - 可能存在打包/加密
1 检测到较高熵(≥6.5)的节 - 可能存在压缩
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| BIN | 6 | 296,418 字节 | |
| JPG | 1 | 32,248 字节 | |
| PNG | 173 | 3,417,860 字节 | |
| WAV | 1 | 30,030 字节 | |
| XML | 6 | 69,367 字节 | |
| ZIP | 1 | 22 字节 | |
| RT_CURSOR | 95 | 1,615,828 字节 | |
| RT_BITMAP | 3 | 296 字节 | |
| RT_ICON | 152 | 868,186 字节 | |
| RT_DIALOG | 1 | 1,104 字节 | |
| RT_GROUP_CURSOR | 24 | 1,474 字节 | |
| RT_GROUP_ICON | 37 | 2,350 字节 | |
| RT_VERSION | 1 | 936 字节 | |
| RT_MANIFEST | 1 | 2,002 字节 |
| 产品 | Directory Opus |
| 描述 | Directory Opus |
| 文件版本 | 13.5.0.0 |
| 原始名称 | dopus.exe |
| 验证状态 | A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file. |
| 签名者 | NVIDIA Corporation; VeriSign Class 3 Code Signing 2010 CA; VeriSign |
| 内部名称 | dopus |
| 版权 | Copyright © 1999-2024 GP Software |
43 BB 43 7D 60 98 66 28 6D D8 39 E1 D0 03 09 F561 19 93 E4 00 00 00 00 00 1C✓ 此文件已进行数字签名,证书链已验证。
Chain verification from CN=NVIDIA Corporation, OU=Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=NVIDIA Corporation, L=Santa Clara, ST=California, C=US (serial:90030604084993935290647585382629313013, sha1:579aec4489a2ca8a2a09df5dc0323634bd8b16b7) failed: The path could not be validated because intermediate certificate 1 expired 2020-02-07 23:59:59Z
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
