home

XPdite.exe

XPdite, by Steve Gibson

Gibson Research Corp.

Publisher:
Gibson Research Corp.

Product:
XPdite, by Steve Gibson

Description:
Windows XP Critical Vulnerability Fix.

Version:
1.1.1

MD5:
917ecc916f78fb107bbe1fe71b3d74c7

SHA-1:
d6227daffddf0b12936d52f69cd492776a101f89

SHA-256:
6c0f078d1a09728667dedf0f6f37a35952385e64a85e560d1cf89cb0edcf0332

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/27/2024 6:46:36 PM UTC  (today)

Scan engine
Detection
Engine version

Quick Heal
(Suspicious) - DNAScan
5.14.14.00

File size:
30 KB (30,720 bytes)

Product version:
1.1.1

Copyright:
Copyright © 2002 Gibson Research Corp.

Original file name:
XPdite.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\gibsonresearchcorp\xpdite.exe

File PE Metadata
Compilation timestamp:
9/17/2002 1:22:35 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:lv9WPOJ+7O1aWpqNBkfY/8iZaWRpn0fgpVTC:V9US+74aWpqrkQ/8iZaIn0fUC

Entry address:
0x15DF0

Entry point:
60, BE, 00, 00, 41, 00, 8D, BE, 00, 10, FF, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Entropy:
7.3239

Packer / compiler:
UPX 2.90LZMA]

Code size:
24 KB (24,576 bytes)

The file XPdite.exe has been seen being distributed by the following URL.

https://www.grc.com/.../xpdite.exe

Scan XPdite.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.