TGCMD.EXE

Support.com Scheduler and Command Dispatcher

TeliaSonera AB

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘SoneraAgent’.
Publisher:
SupportSoft, Inc.  (signed by TeliaSonera AB)

Product:
Support.com Scheduler and Command Dispatcher

Version:
6,1,281,0

MD5:
854c52a9b38a12b4eb6756a6c7987c72

SHA-1:
132e91a10bbf4b6288f9f576dda4a08d6782a4a1

SHA-256:
474cb444d9fa9cd590aa9bbf200e9cce97371bcc5280cef1b6347a49f2c77d35

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 2:40:23 PM UTC  (today)

File size:
1.8 MB (1,926,160 bytes)

Product version:
6,1,281,0

Copyright:
Copyright 1997-2069 SupportSoft

Original file name:
TGCMD.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\sonera\internetavustaja\bin\tgcmd.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
9/22/2004 3:00:00 AM

Valid to:
11/1/2005 1:59:59 AM

Subject:
CN=TeliaSonera AB, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=TeliaSonera AB, L=Sundsvall, S=Medelpad, C=SE

Issuer:
CN=VeriSign Class 3 Code Signing 2001 CA, OU=Terms of use at https://www.verisign.com/rpa (c)01, OU=VeriSign Trust Network, O="VeriSign, Inc."

Serial number:
2DA470E1A42E7BA75DF39BAD703A0260

File PE Metadata
Compilation timestamp:
1/30/2004 7:27:20 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:mqzI4v+jK+Clskjkax3HMG30PLppqSuJeX1:m0rv+ORx3MG3O3

Entry address:
0x1EFF2

Entry point:
55, 8B, EC, 6A, FF, 68, A8, 52, 54, 00, 68, 08, 06, 42, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 70, 41, 54, 00, 33, D2, 8A, D4, 89, 15, 70, F7, 58, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 6C, F7, 58, 00, C1, E1, 08, 03, CA, 89, 0D, 68, F7, 58, 00, C1, E8, 10, A3, 64, F7, 58, 00, 6A, 01, E8, 13, 23, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C3, 00, 00, 00, 59, E8, 6A, 11, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B2, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
1.3 MB (1,323,008 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SoneraAgent

Command:
"C:\Program Files\sonera\internetavustaja\bin\tgcmd.exe" \server \startmonitor \deaf


Scan TGCMD.EXE - Powered by Reason Core Security