home

wmicss.exe

Java corporate

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘G8CID5HC’.
Publisher:
Java corporate  (signed and verified)

Version:
1.0.0.0

MD5:
3b4472cd362f1c7bc8ac853399074e50

SHA-1:
369ab0e9876956ae10a1d1727d41757c6bb19644

SHA-256:
1e2581c0277d56eb9f9a10b0a0da4034beb4f3d15cad5285d4e2cdd05982adfd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 6:08:36 AM UTC  (today)

File size:
5.5 MB (5,772,008 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\wmicss.exe

Digital Signature
Signed by:
Java corporate

Authority:
Java corporate

Valid from:
3/14/2017 10:46:27 AM

Valid to:
3/14/2018 10:46:27 AM

Subject:
CN=Java corporate, O=Java corporate, C=BR

Issuer:
CN=Java corporate, O=Java corporate, C=BR

Serial number:
01

File PE Metadata
Compilation timestamp:
3/14/2017 8:48:14 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x9324C9

Entry point:
68, 94, C0, 1F, 2B, E8, F4, F1, FF, FF, C3, 73, 66, 64, 7D, 6A, 5D, 5B, 32, D3, 28, A3, 0B, 9C, A4, E3, 6A, 5C, 07, 85, FE, 83, FB, 07, E9, 55, 23, 00, 00, F5, F9, C1, EF, 05, 03, FA, 66, 89, 3C, 0B, E9, EB, 4D, 56, 00, EF, 6D, 66, 64, 7C, 7B, 28, 00, 70, D2, 09, AE, 7B, C7, 64, 77, 56, 7D, 7D, 72, 5C, 39, E2, 1C, B2, 1E, BB, CD, 1E, 25, AC, 8F, 91, 7D, 67, E4, 42, 03, EE, 6D, 43, 89, 6A, 86, C3, 50, D3, 9E, 73, 80, 87, 1B, A6, 4B, 15, 48, 85, E3, 0F, B0, 3A, 8D, 55, B9, 99, 94, 9D, FB, 16, 1E, F3, 8A, 5A...
 
[+]

Code size:
4.8 MB (5,073,920 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
G8CID5HC

Command:
C:\users\{user}\appdata\local\wmicss.exe


Scan wmicss.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.