gjagent.exe

Gaijin Entertainment LLP

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Gaijin.Net Agent’.
Publisher:
Gaijin Entertainment LLP  (signed and verified)

MD5:
a6a8fa0e2d896ee623b2d9cca7677e77

SHA-1:
8cf820b52070a8db48330f6c20d23829bb2b935c

SHA-256:
1dc52f1ba88a40e24fc19e2ccdf94af8818df627c0e9cb6236ea39836ebc740a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 1:04:39 AM UTC  (today)

File size:
1.9 MB (1,991,119 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\gaijin\Program Files\netagent\gjagent.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
3/13/2015 6:00:00 AM

Valid to:
3/13/2017 5:59:59 AM

Subject:
CN=Gaijin Entertainment LLP, O=Gaijin Entertainment LLP, L=LONDON, S=ENGLAND, C=GB

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
5C4660F21211A5424AAEBA337D53006B

File PE Metadata
Compilation timestamp:
2/10/2017 6:15:12 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

Entry address:
0x116A8D

Entry point:
E9, 42, 0A, F2, FF, E9, 8E, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, CA, 00, 00, 00, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, B4, 00, 00, 00, CC, CC, CC, CC, 57, 56, 53, 33, FF, 8B, 44, 24, 14, 0B, C0, 7D, 14, 47, 8B, 54, 24, 10, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 14, 89, 54, 24, 10, 8B, 44, 24, 1C, 0B, C0, 7D, 14, 47, 8B, 54, 24, 18, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 1C, 89, 54, 24, 18...
 
[+]

Entropy:
6.5624

Packer / compiler:
Xtreme-Protector v1.05

Code size:
1.2 MB (1,304,064 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Gaijin.Net Agent

Command:
"C:\users\{user}\appdata\local\gaijin\Program Files\netagent\gjagent.exe"


Scan gjagent.exe - Powered by Reason Core Security