DGClient.exe

DGClient

HANGZHOU HUATU SOFTWARE CO., LTD

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘UserInit’.
Publisher:
HANGZHOU HUATU SOFTWARE CO., LTD  (signed and verified)

Product:
DGClient

Version:
4, 6, 2020, 1001

MD5:
3137a2f6b7948ad0e120f303244bbea2

SHA-1:
5883f9c98b3e8aa7e8f0f9bb1d0827e37a5288f9

SHA-256:
5959d4ab1d51fdd4e19ebf6b1fd8c70499d64a9870ec7efced02777732f5bb8c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 5:13:48 AM UTC  (today)

File size:
1000 KB (1,024,032 bytes)

Product version:
4, 6, 2020, 1001

Original file name:
DGClient.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\dg\dgclient.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
11/29/2012 8:00:00 AM

Valid to:
12/30/2014 7:59:59 AM

Subject:
CN="HANGZHOU HUATU SOFTWARE CO., LTD", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="HANGZHOU HUATU SOFTWARE CO., LTD", L=hangzhou, S=zhejiang, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
10371154B28FF40CC6B488DE06262E7D

File PE Metadata
Compilation timestamp:
8/14/2014 2:53:21 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x63550

Entry point:
E8, 85, 83, 00, 00, E9, 79, FE, FF, FF, 3B, 0D, 60, 31, 4D, 00, 75, 02, F3, C3, E9, 07, 84, 00, 00, 8B, FF, 55, 8B, EC, 56, 8B, 75, 14, 57, 33, FF, 3B, F7, 75, 04, 33, C0, EB, 65, 39, 7D, 08, 75, 1B, E8, 69, 4B, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57, 57, E8, A1, 23, 00, 00, 83, C4, 14, 8B, C6, EB, 45, 39, 7D, 10, 74, 16, 39, 75, 0C, 72, 11, 56, FF, 75, 10, FF, 75, 08, E8, 6D, 41, 00, 00, 83, C4, 0C, EB, C1, FF, 75, 0C, 57, FF, 75, 08, E8, 9C, 4D, 00, 00, 83, C4, 0C, 39, 7D, 10, 74, B6, 39, 75, 0C, 73...
 
[+]

Entropy:
6.2361

Code size:
649 KB (664,576 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
UserInit

Command:
C:\Program Files\dg\dgclient.exe


Scan DGClient.exe - Powered by Reason Core Security