home

GbpSv.exe

Gbp Service

Banco de Venezuela SA Banco Universal

It runs as a separate (within the context of its own process) windows Service named “Gbp Service”.
Publisher:
GAS Tecnologia  (signed by Banco de Venezuela SA Banco Universal)

Product:
Gbp Service

Description:
G-Buster Browser Defense - Service

Version:
2.4.13.1

MD5:
df8b5eefd1a9e8c0c0cf3235f8389887

SHA-1:
d641b2effd39e30a7a9cfad569631f925f6111d7

SHA-256:
58eedb2311aa6bd254acc28d9dec0970df43e2c5016cda2ce2cacb8a8f88bb89

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/19/2024 4:28:37 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.14102

File size:
400.2 KB (409,760 bytes)

Product version:
2.4.13.1

Copyright:
Copyright © 2003-2013, ® GAS Tecnologia

Trademarks:
GbpSv

Original file name:
GbpSv.exe

File type:
Executable application (Win32 EXE)

Language:
Portugués (Brasil)

Common path:
C:\Program Files\gbplugin\gbpsv.exe

Digital Signature
Signed by:
Banco de Venezuela SA Banco Universal

Authority:
VeriSign, Inc.

Valid from:
8/15/2013 7:30:00 PM

Valid to:
8/17/2014 7:29:59 PM

Subject:
CN=Banco de Venezuela SA Banco Universal, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=VPA Seguridad de la Informacion, O=Banco de Venezuela SA Banco Universal, L=Caracas, S=Caracas, C=VE

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0BFADF6FF1E7D2E2E7A616E6ABECE4C8

File PE Metadata
Compilation timestamp:
4/4/2013 9:15:40 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:eGlsLzwZSiOLQZNyQPs9EfFgrUVnQqL/IgyLGr8QFJ:eGlsLzwZUZGs94EwDmFQFJ

Entry address:
0xF5013

Entry point:
60, C7, 44, 24, 1C, CE, EC, B0, C8, 60, C7, 44, 24, 38, 87, 14, 8E, 95, 88, 34, 24, 88, 24, 24, C7, 44, 24, 0C, 7B, D7, 8F, 35, 8D, 64, 24, 38, E9, 01, E6, 01, 00, 00, 00, 52, 65, 61, 64, 46, 69, 6C, 65, 00, 89, 04, 24, E8, 74, 88, 00, 00, 9C, 8D, 05, E7, F6, 50, 00, 9C, C7, 44, 24, 04, 07, 76, 4F, 00, C6, 04, 24, 8C, 9C, 89, 44, 24, 04, 60, 9C, C6, 04, 24, 88, C6, 44, 24, 04, FB, FF, 74, 24, 28, C2, 2C, 00, 00, 00, 52, 65, 67, 45, 6E, 75, 6D, 4B, 65, 79, 57, 00, 9C, 88, 04, 24, C7, 44, 24, 04, CE, 76, 10...
 
[+]

Code size:
523.5 KB (536,064 bytes)

Service
Display name:
Gbp Service

Service name:
GbpSv

Description:
Service for G-Buster Browser Defense

Type:
Win32OwnProcess

Group:
GbPlugin Group


Scan GbpSv.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.