home

gg.exe

Gadu-Gadu 10

GG Network S.A.

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Gadu-Gadu 10’.
Publisher:
GG Network S.A.  (signed and verified)

Product:
Gadu-Gadu 10

Version:
10,0,0,10273

MD5:
6c1917746e04a2f62df47c1d0c8628d1

SHA-1:
718f278c43e87100c6c14f5622472506ca7f8c54

SHA-256:
c00881aa5dbcfd599acd057b0f5d0781ecb2dcb23ad0b3609c810f124ff0c490

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 2:17:05 AM UTC  (today)

File size:
11.2 MB (11,776,616 bytes)

Product version:
10,0,0,10273

Copyright:
Copyright (C) 2000-2009

Original file name:
gg.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\gadu-gadu 10\gg.exe

Digital Signature
Signed by:
GG Network S.A.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
2/24/2009 1:00:00 AM

Valid to:
2/25/2010 12:59:59 AM

Subject:
CN=GG Network S.A., O=GG Network S.A., L=Warszawa, S=Mazowieckie, C=PL

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
7636DE0BAEB9C1C85F74CE1E4C5C17A2

File PE Metadata
Compilation timestamp:
11/18/2009 3:44:55 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:uk9u/KmELRlDqZEObsawkQRLK/XMInuVkk8O2qZE2dRZUakg1Hpl:uAm01PvRLK/cInskkk8E2dRRprl

Entry address:
0x380143

Entry point:
E8, CC, 03, 00, 00, E9, 39, FD, FF, FF, CC, FF, 25, 54, 06, A6, 00, FF, 25, 5C, 06, A6, 00, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 38, C9, F2, 00, 89, 0D, 34, C9, F2, 00, 89, 15, 30, C9, F2, 00, 89, 1D, 2C, C9, F2, 00, 89, 35, 28, C9, F2, 00, 89, 3D, 24, C9, F2, 00, 66, 8C, 15, 50, C9, F2, 00, 66, 8C, 0D, 44, C9, F2, 00, 66, 8C, 1D, 20, C9, F2, 00, 66, 8C, 05, 1C, C9, F2, 00, 66, 8C, 25, 18, C9, F2, 00, 66, 8C, 2D, 14, C9, F2, 00, 9C, 8F, 05, 48, C9, F2, 00, 8B, 45, 00, A3, 3C, C9, F2, 00, 8B, 45, 04, A3...
 
[+]

Code size:
6.4 MB (6,680,576 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Gadu-Gadu 10

Command:
"C:\Program Files\gadu-gadu 10\gg.exe"


Scan gg.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.