home

gemiusHeatMap.exe

gemiusHeatMap

Gemius S.A.

The application gemiusHeatMap.exe, “gemiusHeatMap file” by Gemius S.A has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Gemius SA  (signed by Gemius S.A.)

Product:
gemiusHeatMap

Description:
gemiusHeatMap file

Version:
6.0.20101202

MD5:
2453e6926b8f103a4a2dd114cd4d0b6e

SHA-1:
7fa89cebe0585de390179dc9043fc0e62533b81a

SHA-256:
0854f5477da5c4b4441061973bc1522087fabf28a140d5c93ba9148e0e0173f3

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/15/2024 8:23:03 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.8.17.2

File size:
12.5 MB (13,148,504 bytes)

Product version:
6.0.20101202

Copyright:
(c) 2007-2010 Gemius SA. All rights reserved.

Original file name:
gemiusHeatMap.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\gemiusheatmap\gemiusheatmap.exe

Digital Signature
Signed by:
Gemius S.A.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
1/19/2010 1:00:00 AM

Valid to:
3/21/2011 12:59:59 AM

Subject:
CN=Gemius S.A., O=Gemius S.A., L=Warszawa, S=mazowieckie, C=PL

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
51273A3F6D425725238476DDB778FFBC

File PE Metadata
Compilation timestamp:
12/2/2010 1:53:08 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
196608:TPmbipQbaoCEJvBMIXwPWpGplR80Lhikx:TxozBoPWpGplR8ihikx

Entry address:
0xDA37C

Entry point:
E8, 2F, 85, 00, 00, E9, 17, FE, FF, FF, 8B, 44, 24, 04, A3, 38, 4C, 8E, 00, C3, 55, 8D, AC, 24, 58, FD, FF, FF, 81, EC, 28, 03, 00, 00, A1, 1C, CC, 8C, 00, 33, C5, 89, 85, A4, 02, 00, 00, 56, 89, 85, 88, 00, 00, 00, 89, 8D, 84, 00, 00, 00, 89, 95, 80, 00, 00, 00, 89, 5D, 7C, 89, 75, 78, 89, 7D, 74, 66, 8C, 95, A0, 00, 00, 00, 66, 8C, 8D, 94, 00, 00, 00, 66, 8C, 5D, 70, 66, 8C, 45, 6C, 66, 8C, 65, 68, 66, 8C, 6D, 64, 9C, 8F, 85, 98, 00, 00, 00, 8B, B5, AC, 02, 00, 00, 8D, 85, AC, 02, 00, 00, 89, 85, 9C, 00...
 
[+]

Code size:
4 MB (4,149,248 bytes)

Remove gemiusHeatMap.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.