home

grdvkc32.dll

Guardant Autoprotection Dynamic Link Library

ZAO AKTIV-SOFT

Publisher:
Aktiv Co.  (signed by ZAO AKTIV-SOFT)

Product:
Guardant Autoprotection Dynamic Link Library

Version:
7, 0, 130, 0

MD5:
74d35349616a60bbc470dff0b0ee6639

SHA-1:
543c6d49b8f3d71e38ebbc14cdf3cf119eadf596

SHA-256:
2b05e04601402b20bcf77660926c2c5309958f898eb511ba3c8cda0a15f622b0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 11:34:00 PM UTC  (a few moments ago)

File size:
5.9 MB (6,236,984 bytes)

Product version:
7, 0, 130, 0

Copyright:
© Aktiv Co. 2004-2016

Original file name:
grdvkc32.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\stool_v1.30\grdvkc32.dll

Digital Signature
Signed by:
ZAO AKTIV-SOFT

Authority:
GlobalSign nv-sa

Valid from:
11/2/2016 4:25:53 PM

Valid to:
12/7/2018 5:13:20 PM

Subject:
E=hotline@rutoken.ru, CN=ZAO AKTIV-SOFT, OU=Software developing, O=ZAO AKTIV-SOFT, L=Moscow, S=Moscow, C=RU

Issuer:
CN=GlobalSign CodeSigning CA - G3, O=GlobalSign nv-sa, C=BE

Serial number:
56E32BB02CF61C7207D993FD

File PE Metadata
Compilation timestamp:
11/9/2016 5:10:25 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:UDbV+NmL12jv2yKKSEqOLfiPnFsvs+ERx8UnWYzYki0G:M1cjv2MPjitsJERNWYzYki

Entry address:
0x5BB38

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, 40, 7C, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, ED, FE, FF, FF, 59, C2, 0C, 00, 3B, 0D, 60, 04, 2F, 10, 75, 02, F3, C3, E9, B0, 7C, 00, 00, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 60, 04, 2F, 10, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 60, 04, 2F, 10, 33...
 
[+]

Code size:
2.8 MB (2,981,888 bytes)

Scan grdvkc32.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.