home

ADriveGDown.exe

에이드라이브 파일다운로드 프로그램

㈜ 에이플러스커뮤니케이션즈

Publisher:
에이플러스 커뮤니케이션  (signed by ㈜ 에이플러스커뮤니케이션즈)

Product:
에이드라이브 파일다운로드 프로그램

Version:
1.0.0.1

MD5:
e100c20aa2896522bee64f8f64f06491

SHA-1:
bde35011644d447c4eb5f29dc412e558ae7566e1

SHA-256:
265bae21348645f014a9bfa728029d6efb0b34db6f1c0842a61f9fbc498bf8a5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 10:46:01 PM UTC  (today)

File size:
2.8 MB (2,949,848 bytes)

Product version:
1.0.0.1

Copyright:
에이플러스 커뮤니케이션. All rights reserved.

Original file name:
ADriveGDown.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\adrive\adrivegdown.exe

Digital Signature
Signed by:
㈜ 에이플러스커뮤니케이션즈

Authority:
Thawte, Inc.

Valid from:
7/27/2011 9:00:00 AM

Valid to:
7/27/2012 8:59:59 AM

Subject:
CN=㈜ 에이플러스커뮤니케이션즈, O=㈜ 에이플러스커뮤니케이션즈, L="Seocho-gu ", S=SEOUL, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
06A14B11F721C57A5279072098699A58

File PE Metadata
Compilation timestamp:
7/16/2012 11:09:21 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:LhBzdvVnRL3pwLTttWcytnDW5nk98ZOyfN4vHz1Bzv4lnfJlQFxoxve:lBP95w/vaDW5nvnfN4vpBzv4pfJlS4e

Entry address:
0x62092

Entry point:
E8, 48, 9D, 00, 00, E9, 78, FE, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 14, 7D, 49, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 14, 7D, 49, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B...
 
[+]

Entropy:
5.5012

Code size:
473 KB (484,352 bytes)

Windows Firewall Allowed Program
Name:
adrivedownservice


Scan ADriveGDown.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.