» gatesnapper.browseradapter.exe
Overview
Analysis
File Details
Network (1)

gatesnapper.browseradapter.exe

Venturium

The application gatesnapper.browseradapter.exe by Venturium has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. While running, it connects to the Internet address ny1wv3280.xglobe.net on port 80 using the HTTP protocol.

File name:

Publisher:

Venturium (signed and verified)

MD5:

b8e68e83b29ebb5c53d2fdc8d74d8359

SHA-1:

d373be6b241f82e5fc2cbbe7d18eb06e608c6fcf

SHA-256:

1ef5c7e1072e7abce42e047cc8f4f28ed37742b7cc85bf66041b85f91abfc7d8

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

8/8/2025 6:04:06 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Yontoo (M)

17.3.16.5

File size:

105.4 KB (107,936 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\gate snapper\bin\gatesnapper.browseradapter.exe

Digital Signature

Signed by:

Venturium

Authority:

Symantec Corporation

Valid from:

10/20/2016 5:00:00 PM

Valid to:

10/21/2017 4:59:59 PM

Subject:

CN=Venturium, O=Venturium, L=San Diego, S=California, C=US

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

4383CEB82E18A96B6E6EBA7B768938CC

File PE Metadata

Compilation timestamp:

3/15/2017 9:40:18 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

Entry address:

0x4D75

Entry point:

E8, C5, 21, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 5D, E9, F3, 05, 00, 00, 3B, 0D, 70, 70, 41, 00, 75, 02, F3, C3, E9, 43, 22, 00, 00, 8B, FF, 55, 8B, EC, 83, EC, 10, EB, 0D, FF, 75, 08, E8, 46, 23, 00, 00, 59, 85, C0, 74, 0F, FF, 75, 08, E8, 8A, 07, 00, 00, 59, 85, C0, 74, E6, C9, C3, F6, 05, 58, 85, 41, 00, 01, BF, 4C, 85, 41, 00, BE, 5C, 32, 41, 00, 75, 2C, 83, 0D, 58, 85, 41, 00, 01, 6A, 01, 8D, 45, FC, 50, 8B, CF, C7, 45, FC, 64, 32, 41, 00, E8, 2C, 00, 00, 00, 68, 7E, 20, 41, 00, 89, 35, 4C... 
[+]

Entropy:

6.4003

Code size:

68.5 KB (70,144 bytes)

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):

Connects to ny1wv3280.xglobe.net (204.145.82.20:80)

Remove gatesnapper.browseradapter.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.