home

gmail.exe

GmailNotice

DERIVCO

This is a setup program which is used to install the application. The file has been seen being downloaded from dc165.2shared.com.
Publisher:
DERIVCO

Product:
GmailNotice

Version:
1.0.0.0

MD5:
0eace2319d7cc7843ad5674ebd75c387

SHA-1:
662f0c3c58552ae23cee543a7d67729876a3dfde

SHA-256:
90d6e58180aabe800a5665c9a31da057a5f7d977920b10def2bfafd91484e982

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/30/2024 8:40:36 AM UTC  (today)

File size:
94.5 KB (96,768 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © DERIVCO 2008

Original file name:
GmailNotice.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\gmail.exe

File PE Metadata
Compilation timestamp:
5/14/2012 3:17:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:7gCN4HGneSDE+tPEjT0Sqg1/63G0SMzO44/2bc6KqqfgCN4HGbeSDE+tPEjT0Sqv:kmeSDE+tPEjT0Sqg1/63G0SMH4sc6Kqg

Entry address:
0x11FFE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
64.5 KB (66,048 bytes)

The file gmail.exe has been seen being distributed by the following URL.

http://dc165.2shared.com/download/.../Gmail.exe

Scan gmail.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.