home

BESGather.exe

BigFix, Inc. BESGather

BigFix, Inc.

It runs as a separate (within the context of its own process) windows Service named “BES Gather Service”.
Publisher:
BigFix, Inc.  (signed and verified)

Product:
BigFix, Inc. BESGather

Description:
BESGather component of BigFix Enterprise Server

Version:
7.2.5.22

MD5:
3bb34e47fe4ce7dcde6aa4aec44f5d48

SHA-1:
8740a71333e85797ab25ac8d113444df75fd6bf1

SHA-256:
d43a83f580d2f644b482137d6c35e45f9c410e506f201bbf863f61f8f4d76d39

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 12:45:22 PM UTC  (today)

File size:
647.1 KB (662,600 bytes)

Product version:
7.2.5.22

Copyright:
Copyright 2009

Original file name:
BESGather.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\bigfix enterprise\bes server\besgather.exe

Digital Signature
Signed by:
BigFix, Inc.

Authority:
VeriSign, Inc.

Valid from:
3/4/2008 7:00:00 PM

Valid to:
3/5/2011 6:59:59 PM

Subject:
CN="BigFix, Inc.", OU=Engineering, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="BigFix, Inc.", L=Emeryville, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6ADD83B3F215336EEF0B3466FE34D561

File PE Metadata
Compilation timestamp:
10/19/2009 7:33:21 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
12288:Sgu4Voe9BrTyz3AfE839d7V1e8EAD1ijuBO0i:SglV99BrAAF39dB1esy0i

Entry address:
0x540F2

Entry point:
E8, 27, B9, 00, 00, E9, 40, FE, FF, FF, CC, CC, CC, CC, 8B, 4C, 24, 0C, 57, 85, C9, 0F, 84, B7, 00, 00, 00, 8B, 7C, 24, 08, 56, F7, C7, 03, 00, 00, 00, 53, 74, 11, 8A, 07, 83, C7, 01, 84, C0, 74, 39, F7, C7, 03, 00, 00, 00, 75, EF, 8B, 07, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C7, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 47, FC, 84, C0, 74, 21, 84, E4, 74, 18, A9, 00, 00, FF, 00, 74, 0C, A9, 00, 00, 00, FF, 75, CF, 83, EF, 01, EB, 0D, 83, EF, 02, EB, 08, 83, EF, 03, EB, 03, 83, EF, 04, 8B, 74, 24...
 
[+]

Entropy:
6.3457

Code size:
456 KB (466,944 bytes)

Service
Display name:
BES Gather Service

Service name:
BESGather

Description:
Downloads and caches Internet content for client download efficiency

Type:
Win32OwnProcess


Scan BESGather.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.