home

drivergenius_12.0.0.1332_portable_(!!!run_as_admin).exe

Driver Genius combi Portable

sign

The executable drivergenius_12.0.0.1332_portable_(!!!run_as_admin).exe has been detected as malware by 7 anti-virus scanners.
Publisher:
sign  (signed and verified)

Product:
Driver Genius combi Portable

Version:
12. 0. 0.10

MD5:
68fc85a418246f8909d6b2c0f836282d

SHA-1:
f4ab8c1486a04fb6aad2d00c528a89d700eeaf80

SHA-256:
c772232d9c36111c219d40d1bf49569d6053621498ffef5f26c2921674ea33f3

Scanner detections:
7 / 68

Status:
Malware

Analysis date:
8/5/2025 12:44:21 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Fat-Obfuscated
2015.0.3253

Dr.Web
Trojan.StartPage.56940
9.0.1.0356

Fortinet FortiGate
PossibleThreat.SB!tr
12/22/2014

IKARUS anti.virus
Fat-Obfuscated
t3scan.1.8.5.0

McAfee
Artemis!68FC85A41824
5600.6909

NANO AntiVirus
Trojan.Win32.StartPage.cratbl
0.28.6.63850

Trend Micro House Call
Suspicious_GEN.F47V1129
7.2.356

File size:
26.9 MB (28,231,224 bytes)

Product version:
12. 0. 0.10

Copyright:
Hobo (hoboman50)

Original file name:
Driver Genius combi Portable

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\drivergenius pro 12.0.0.1332 combi 30-11-2014 portable by hobo\drivergenius_12.0.0.1332_portable_(!!!run_as_admin).exe

Digital Signature
Signed by:
sign

Authority:
sign Certificate Authority

Valid from:
11/20/2014 12:21:07 AM

Valid to:
11/20/2044 12:21:07 AM

Subject:
CN=sign

Issuer:
CN=sign Certificate Authority

Serial number:
059CF077EBC20B3D404F47E236041E37

File PE Metadata
Compilation timestamp:
3/30/2013 11:01:22 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:Yxlt8KC+ERzEdmGVtSmAzVfX2YDcp9nLTuKG40EeDmq8sdOO7zeB5lT8y5R1x+BQ:YlOU5qzVfXmLLyYd0vbz8tf+BpSnMm

Entry address:
0x162C8

Entry point:
B8, F0, 49, 25, 02, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, C5, DE, 28, 1D, 5D, 4F, F3, 3E, EA, D3, 9E, 32, 51, 02, C2, 2E, B7, 2E, 11, 7B, C3, A2, E1, AF, FD, 2B, 67, 32, D4, 59, 0E, F2, C8, 8D, BC, 6A, B8, CE, 27, 3E, FD, F9, 1A, 1C, A8, 7C, 28, C2, 1C, 6B, 06, F9, 1A, 9A, 89, 72, 06, F6, 15, 38, 08, A5, 76, 7D, 54, 37, 0B, F1, EB, DE, D1, A5, 61, 61, E5, F1, C5, 5F, ED, 92, D1, C5, 77, EE, D4, 1B, BA, 59, 78, 3F, 69, 07, 8B...
 
[+]

Packer / compiler:
PECompact v2

Code size:
83.5 KB (85,504 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.