gui.exe

  • File Path: C:\Program Files\Python38\Lib\site-packages\setuptools\gui.exe

Hashes

Type Hash
MD5 E97C622B03FB2A2598BF019FBBE29F2C
SHA1 32698BD1D3A0FF6CF441770D1B2B816285068D19
SHA256 5C1AF46C7300E87A73DACF6CF41CE397E3F05DF6BD9C7E227B4AC59F85769160
SHA384 643F14B5DB55B8F2A93B79AB1653EDE48C4AC663163AC3C9886D2304A422843C0E2B7E412A5A4A2EBA7338B157B7E0E4
SHA512 DB70C62FB35A8E5B005F13B57C1EBBF6C465F6FF0524422294C43E27FB4AA79379DC1E300AD11DC2354405C43B192AE06B91C0F525A1F2617E4D14673651A87D
SSDEEP 768:nMgEYaPKRsVvd7M826QXqVXDjPXHyRhQcBU+zGqJS967GMctEvdGA9SYxQ:Mg/6/tM8NXDjPX0QWlfGMckTQ
IMP BA2C974ED567C90FE365844AF978F320
PESHA1 27C7301A46B4CD0350A37631FEADF9A0AB72ACB0
PE256 011CFF0342F3AA600692D062FD5D624BB1EF5D5671637F89E22F2E7578C24694

Runtime Data

Usage (stderr):

Cannot open C:\Program Files\Python38\Lib\site-packages\setuptools\gui-script.pyw

Loaded Modules:

Path
C:\Program Files\Python38\Lib\site-packages\setuptools\gui.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: The file C:\Program Files\Python38\Lib\site-packages\setuptools\gui.exe is not digitally signed. You cannot run this script on the current system. For more information about running scripts and setting execution policy, see about_Execution_Policies at https:/go.microsoft.com/fwlink/?LinkID=135170
  • Serial: ``
  • Thumbprint: ``
  • Issuer:
  • Subject:

File Metadata

  • Original Filename:
  • Product Name:
  • Company Name:
  • File Version:
  • Product Version:
  • Language:
  • Legal Copyright:
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 0/71
  • VirusTotal Link: https://www.virustotal.com/gui/file/5c1af46c7300e87a73dacf6cf41ce397e3f05df6bd9c7e227b4ac59f85769160/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Python310-32\Lib\site-packages\setuptools\gui.exe 100
C:\Program Files (x86)\Python310-32\Lib\site-packages\setuptools\gui-32.exe 100
C:\program files (x86)\Python38-32\Lib\site-packages\setuptools\gui.exe 100
C:\program files (x86)\Python38-32\Lib\site-packages\setuptools\gui-32.exe 100
C:\Program Files\Blender Foundation\Blender 2.83\2.83\python\lib\site-packages\setuptools\gui.exe 83
C:\program files\Blender Foundation\Blender 2.83\2.83\python\lib\site-packages\setuptools\gui.exe 83
C:\Program Files\Blender Foundation\Blender 2.83\2.83\python\lib\site-packages\setuptools\gui-32.exe 83
C:\program files\Blender Foundation\Blender 2.83\2.83\python\lib\site-packages\setuptools\gui-32.exe 83
C:\Program Files\Blender Foundation\Blender 2.90\2.90\python\lib\site-packages\setuptools\gui.exe 83
C:\Program Files\Blender Foundation\Blender 2.90\2.90\python\lib\site-packages\setuptools\gui-32.exe 83
C:\program files\GIMP 2\lib\python2.7\site-packages\setuptools\gui.exe 99
C:\Program Files\Python310\Lib\site-packages\setuptools\gui.exe 100
C:\Program Files\Python310\Lib\site-packages\setuptools\gui-32.exe 100
C:\Program Files\Python38\Lib\site-packages\setuptools\gui-32.exe 100

Possible Misuse

The following table contains possible examples of gui.exe being misused. While gui.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
signature-base gen_cn_hacktools.yar description = “Chinese Hacktool Set - file hscan-gui.exe” CC BY-NC 4.0

MIT License. Copyright (c) 2020-2021 Strontic.