home

gmail_notifier.exe

Gmail Notifier

The executable gmail_notifier.exe has been detected as malware by 9 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from www.gmailnotifier.com.
Product:
Gmail Notifier

Version:
1.0.0.87

MD5:
425ead46b8218bf16d27af2f205cbce5

SHA-1:
09b4c1325c7e95a368e66fa8b213eaf75b0b3dfa

SHA-256:
b29fd4b56b281f829f22b553c4db2bd386ef9672c0bcb6b60339cf147e263498

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
4/27/2024 12:22:33 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Zbot-THZ [Trj]
160327-1

Dr.Web
Trojan.Inject1.36963
9.0.1.05190

Emsisoft Anti-Malware
Gen:Variant.Midie.6956
11.5.0.6191

ESET NOD32
Win32/TrojanDropper.Agent.PYF trojan
8.0.319.0

F-Secure
Variant.Midie.6956
5.15.21

Kaspersky
Backdoor.Win32.Androm
15.0.0.562

McAfee
Trojan.PWSZbot-FIB!425EAD46B821
18.0.204.0

Microsoft Security Essentials
Threat.Undefined
1.219.1412.0

Norman
Gen:Variant.Midie.6956
02.04.2016 17:35:19

File size:
3.6 MB (3,733,296 bytes)

Product version:
1.0.0.87

Copyright:
http://www.gmailnotifier.com

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\gmail_notifier.exe

File PE Metadata
Compilation timestamp:
8/29/2012 8:22:26 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:Yk4IXYsZtT1uzltWO/8rgaBqk6sNnlSFJspDLOMgdV:HrT1o2gybJSIDLwH

Entry address:
0x169F

Entry point:
55, 8B, EC, 6A, FF, 68, F8, 20, 40, 00, 68, 50, 18, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, 5F, 57, FF, 15, D4, 20, 40, 00, 59, 83, 0D, B0, 30, 40, 00, FF, 83, 0D, B4, 30, 40, 00, FF, FF, 15, D0, 20, 40, 00, 8B, 0D, AC, 30, 40, 00, 89, 08, FF, 15, CC, 20, 40, 00, 8B, 0D, A8, 30, 40, 00, 89, 08, A1, C8, 20, 40, 00, 8B, 00, A3, B8, 30, 40, 00, E8, 35, 01, 00, 00, 39, 1D, 90, 30, 40, 00, 75, 0C, 68, 42, 18, 40, 00, FF, 15...
 
[+]

Entropy:
7.9876

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
2.5 KB (2,560 bytes)

The file gmail_notifier.exe has been seen being distributed by the following URL.

http://www.gmailnotifier.com/.../Gmail_Notifier.exe

Remove gmail_notifier.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.