KillGom.exe
- File Path:
C:\Program Files (x86)\GRETECH\GomPlayer\KillGom.exe
Hashes
Type | Hash |
---|---|
MD5 | 37B7D35855260B524B68AF4F748448BE |
SHA1 | 034157FB65D23255472489281CF058168DEF1AFA |
SHA256 | 27612DF3DB2ABC011476354349B3E77AE6178603F81C7CC31FE515F59F2B02BB |
SHA384 | 376453EE78E696938A75E7593382E474550CFFB9F54F35B9253E220B28E28EF0BDAAFC71931C97485B174E6984C44E41 |
SHA512 | 290BD461A1D3B4E28AF3503205207C6E70B11BB234537D65F0CA7A48C497743CE5AD958A97BD16CDE95D891C3A311943D03C0A9700A22B1DC40F53A2CFDD4158 |
SSDEEP | 96:k7UK2IuUHPtboynHvzz2dqxSG7+4EQej7DUoOynWLmDnJRweElfC9z0Ysm7e4o9J:huuSP1oynHnYe+PjPlO+wkJGwEl4obz |
IMP | 022335BA51D5D3C088F1C0EA43D44EA3 |
PESHA1 | 77610C7C26AC55F8E1CF03B8EEE5141538D1A912 |
PE256 | D6BDEF8813D44AD16152C8310FC093FD2660977EBBD3C8F1B78CA5C731B9880D |
Runtime Data
Loaded Modules:
Path |
---|
C:\Program Files (x86)\GRETECH\GomPlayer\KillGom.exe |
C:\Windows\SYSTEM32\ntdll.dll |
C:\Windows\System32\wow64.dll |
C:\Windows\System32\wow64cpu.dll |
C:\Windows\System32\wow64win.dll |
Signature
- Status: Signature verified.
- Serial:
59B4F88AACBE29B5C1AE3340C2C0F244
- Thumbprint:
27CBF6A879C267D0DE44D0E0E5BF74DEFAF6A959
- Issuer: CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US
- Subject: CN=GRETECH, O=GRETECH, L=Gangnam-gu, S=Seoul, C=KR
File Metadata
- Original Filename:
- Product Name:
- Company Name:
- File Version:
- Product Version:
- Language:
- Legal Copyright:
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/71
- VirusTotal Link: https://www.virustotal.com/gui/file/27612df3db2abc011476354349b3e77ae6178603f81c7cc31fe515f59f2b02bb/detection/
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.