home

GiljabiStart.exe

LG LIU

LG Electronics Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘LG Intelligent Update’.
Publisher:
BIT LEADER  (signed by LG Electronics Inc.)

Product:
LG LIU

Description:
Giljabi Start

Version:
3.0.0.6

MD5:
b71bc7978d24ee7ab23f5d108a0d06eb

SHA-1:
d63b30ec2a971b193c1ef1a1e375b9d000a83d1f

SHA-256:
b301f9e9eb8604e2079f0e1bf33b168c682e7b90cbc32a3e4b8a72cc269acb33

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 6:07:23 PM UTC  (today)

File size:
241.3 KB (247,088 bytes)

Product version:
3.0.0.6

Copyright:
Copyright (C) 2006~2008

Original file name:
GiljabiStart.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\lg_swupdate\giljabistart.exe

Digital Signature
Signed by:
LG Electronics Inc.

Authority:
VeriSign, Inc.

Valid from:
8/10/2007 2:00:00 AM

Valid to:
8/25/2008 1:59:59 AM

Subject:
CN=LG Electronics Inc., OU=Engineering Dept. DID Division, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=LG Electronics Inc., L=Kumi, S=Kyoungsangbuk-do, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
103D387EAFDB9D10D9D61AEAF4A77090

File PE Metadata
Compilation timestamp:
1/7/2008 8:39:14 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:TDOqyAVL8snlbazUqE2GCzs4ZD8pSDQLPrziqVjGhO9ZkYS3lByWNjV13eGMCK:HOGxnlYUKzs4ZD8pSdwkN3lBh0

Entry address:
0x39DCE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
224 KB (229,376 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
LG Intelligent Update

Command:
"C:\Program Files\lg_swupdate\giljabistart.exe" gilautouc


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.