sysinfo.exe

  • File Path: C:\Program Files (x86)\Glary Utilities 5\sysinfo.exe
  • Description: Glary Utilities SystemInformation

Screenshot

sysinfo.exe

Hashes

Type Hash
MD5 D6CBD4C6438E84458D980C4F27642E2C
SHA1 F960BB60A94B17C92AE77BE89C374374F044D304
SHA256 84508275784CE149870FC61032AFD3DE11EDE255DDDA1CAE53E3EAF404116BDF
SHA384 29C2D9CC4D6DBE5BD94DFD6AB6C597C3D0AF093A217286573EDC230BA59B7B60A3A7197F0724841962366CD8BB47D5C2
SHA512 710C3B6EEE79F1A9559EB952643393409479775D2B8ED99AC051D51EBA2850113C05E711D9B386E77F56AC74BB02803CD300EB55AB7F1F58B36AF32923E46121
SSDEEP 12288:5yQ/UMzlQ+pa2l0CG1QmGyjiSzmssHzaouX:cQ8MzlQ+pdrmGym4mssHzaouX
IMP 001086BE621E706BCDF66F2436BA40E4
PESHA1 C36308D47717650E81AB57CC49189A6BD687AD25
PE256 BF2D000CA6F39A6545E0355514741E2C663736F66ED42A60ED8DDB84870FEF72

Runtime Data

Window Title:

System Information

Open Handles:

Path Type
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\SysWOW64\en-US\user32.dll.mui File
(RW-) C:\Program Files (x86)\Glary Utilities 5 File
(RW-) C:\Windows File
(RW-) C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9625_none_508ef7e4bcbbe589 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.508_none_429cdbca8a8ffa94 File
(RW-) C:\xCyclopedia File
\BaseNamedObjects__ComCatalogCache__ Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\Sessions\1\Windows\Theme2547664911 Section
\Windows\Theme3854699184 Section

Loaded Modules:

Path
C:\Program Files (x86)\Glary Utilities 5\sysinfo.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 0F05AE21CDC17B9F3CF09D7BFC659BA3
  • Thumbprint: 362EBB303E088105BDCC07D94E6B7875D30C0D06
  • Issuer: CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: CN=Glarysoft LTD, O=Glarysoft LTD, S=Beijing, C=CN

File Metadata

  • Original Filename: SysInfo.exe
  • Product Name: Glary Utilities
  • Company Name: Glarysoft Ltd
  • File Version: 5.0.0.23
  • Product Version: 5.0.0.1
  • Language: Chinese (Simplified, China)
  • Legal Copyright: Copyright (c) 2003-2020 Glarysoft Ltd
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 1/68
  • VirusTotal Link: https://www.virustotal.com/gui/file/84508275784ce149870fc61032afd3de11ede255ddda1cae53e3eaf404116bdf/detection/

Possible Misuse

The following table contains possible examples of sysinfo.exe being misused. While sysinfo.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes.

Source Source File Example License
malware-ioc nukesped_lazarus .sysinfo.exe``{:.highlight .language-cmhg} © ESET 2014-2018

MIT License. Copyright (c) 2020-2021 Strontic.