You're welcome on behalf of the Bleeping Computer community.
FYI for future reference.MD5
(Message-Digest algorithm 5) is a commonly used cryptographic hash function with a unique a 128-bit hash value used in a wide variety of security applications to check/verify file integrity and for password authentication. A cryptographic hash (MD5, SHA1, SHA256) is used to identify a particular file and to make sure that a downloaded file is identical with the one that the author uploaded. These hashes are calculated from the file itself, the binary code defines how the final hash looks. If you change just a single byte the hash will change dramatically, so they are usually a good way to ensure that you have the right version.
Use MD5 hashes to verify software downloads
...the MD5 algorithm is used to generate a hash value from the known good data -- either the original password in the first case or the original file in the latter case. For password authentication, then, whenever the password is entered by someone attempting to log in, a hash is generated from the entered password and compared against the stored hash. If they match, authentication is determined by the system to be successful. For file integrity verification, such as when downloading an application installer, there is often an MD5 hash (often called a "checksum") provided along with the download. To verify the file is the original, uncorrupted file you wanted, generate a new hash from the file and compare it against the MD5 hash provided with the download...
One way too investigate an MD5 hash, is to use VirusTotal and search for the report of a file that has been submitted before using the virustotal-search_V0_0_2.zip tool. Read Searching With VirusTotal
by Didier Stevens, Microsoft MVP Consumer Security
You can also download and use Sigcheck
by Mark Russinovich...a command-line utility that shows file version number, timestamp information, and digital signature details, including certificate chains. It also includes an option to check a files status on VirusTotal. Extract (unzip) sigcheck and place sigcheck.exe in your root directory, usually C:\.
To check for unsigned files in the \Windows\System32 directories, use the following RUN command:
C:\sigcheck -u -e c:\windows\system32