home

hg64.exe

AWLoader component HG64.exe

my.com .BV

Publisher:
MY.COM B.V.  (signed by my.com .BV)

Product:
AWLoader component HG64.exe

Version:
3.0.31.38370

MD5:
19e9e9746a108847827df90925eb0598

SHA-1:
7daa2d0164c2fce3a7a0b17fc5fbbbbae4c8e9bb

SHA-256:
897dfc724a866eb47419b6dca305f279963cde80565ebc77dfb90333ab2a1fe3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 4:52:05 AM UTC  (today)

File size:
544.4 KB (557,456 bytes)

Product version:
3.0.31.38370

Copyright:
Copyright (C) 2017 MY.COM B.V.

Original file name:
GameCenter@Mail.Ru.exe

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\awloader\hg64.exe

Digital Signature
Signed by:
my.com .BV

Authority:
Symantec Corporation

Valid from:
1/16/2015 8:00:00 AM

Valid to:
1/16/2018 7:59:59 AM

Subject:
CN=my.com .BV, O=my.com .BV, L=Amsterdam, S=Netherlands, C=NL

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
4E29F87C0D48C2DC1A8A966DA40985D6

File PE Metadata
Compilation timestamp:
2/14/2017 4:25:11 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

Entry address:
0x31910

Entry point:
55, 48, 83, EC, 20, 48, 8B, EC, 90, 48, 8D, 0D, 40, 00, 00, 00, E8, 2B, EB, FD, FF, E8, 26, F6, FF, FF, 48, 8B, 0D, FF, AB, 00, 00, 89, 01, E8, 58, 78, FD, FF, EB, 08, 90, 90, E8, 4F, 7A, FD, FF, 90, 48, 8D, 65, 20, 5D, C3, 48, 8D, 04, 05, 00, 00, 00, 00, 48, 83, EC, 28, E8, 37, 70, FD, FF, 48, 83, C4, 28, C3, 00, 00, 1E, 00, 00, 00, 00, 00, 00, 00, 90, 19, 43, 00, 00, 00, 00, 00, A6, 09, 00, 00, 00, 00, 00, 00, 70, 1B, 43, 00, 00, 00, 00, 00, 18, 00, 00, 00, 00, 00, 00, 00, A0, 68, 43, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5582

Code size:
214.5 KB (219,648 bytes)

Scan hg64.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.