home

GbpSv.exe

Gbp Service

Banco do Brasil S.A.

It runs as a separate (within the context of its own process) windows Service named “Gbp Service”.
Publisher:
Banco do Brasil S.A.  (signed and verified)

Product:
Gbp Service

Description:
G-Buster Browser Defense - Service

Version:
2,1,3,0

MD5:
547ead43c19b5fd4f19cc5d04e79f293

SHA-1:
9df0bff55a01d916a239bd5e99d6ebbd9e59c86c

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/29/2024 2:22:49 AM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
PUA.Packed.PECompact-1
0.98/18011

File size:
43.8 KB (44,872 bytes)

Product version:
2,1,3,0

Copyright:
Copyright © 2003-2007, G-Buster Browser Defense

Trademarks:
GbpSv

Original file name:
GbpSv.exe

File type:
Executable application (Win32 EXE)

Language:
Brazilian Portuguese

Common path:
C:\Program Files\gbplugin\gbpsv.exe

Digital Signature
Signed by:
Banco do Brasil S.A.

Authority:
VeriSign, Inc.

Subject:
CN=Banco do Brasil S.A., OU=UF Tecnologia, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Banco do Brasil S.A., L=Brasilia, S=Distrito federal, C=BR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
47F4EDDC7733CAB2C05F42891B63A1F9

File PE Metadata
Compilation timestamp:
7/19/2007 9:10:08 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:lHhs6+sT2E13I9T38DUIrs4Sh70CglC3uXpsdG0UuYLy8bUkm:lBi/d3AUYbShfuXmdif24U

Entry address:
0x5260

Entry point:
B8, 88, 99, 41, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, FB, 5D, 07, 92, 46, 0F, B2, BF, 1F, 3A, 46, E7, 87, CB, AE, A4, EE, EB, 05, 4F, 13, A7, FE, 54, 02, 2A, 11, 1D, 98, 08, 81, 2E, E2, 16, 8F, 37, 7B, 8F, 57, F4, E4, 0A, DF, 75, 43, A4, 1C, E8, CE, 9D, C9, D5, D6, E5, 6F, 05, FA, 6D, 6A, C2, A8, 12, AB, 6C, B4, 5B, 6B, B9, 4E, 37, 7A, 6A, ED, B9, B0, 21, CA, 8F, 41, C8, BF, 32, 45, 03, FB, 33, F9, D0, DB, 6E, F1, 4B, 98...
 
[+]

Packer / compiler:
PECompact v2

Code size:
60 KB (61,440 bytes)

Service
Display name:
Gbp Service

Service name:
GbpSv

Description:
Service for G-Buster Browser Defense

Type:
Win32OwnProcess

Group:
GbPlugin Group


Scan GbpSv.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.