home

gs911downloader.exe

GS911Installer Application

HEX Microsystems (Pty) Ltd

This is a setup and installation application. The file has been seen being downloaded from www.hexcode.co.za.
Publisher:
HEX Code  (signed by HEX Microsystems (Pty) Ltd)

Product:
GS911Installer Application

Description:
GS-911 Downloader

Version:
1, 0, 0, 2

MD5:
40abbcda5cac208ca6d27cba6bfd036f

SHA-1:
68baa579cea94cf277b99363e802380833eff158

SHA-256:
077a1f8e3f3899bc02765e0ae250cea8e649c572c924d0b640def29ff3f40f3a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 12:18:57 PM UTC  (today)

File size:
5.9 MB (6,230,072 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright (C) 2012

Trademarks:
GS-911

Original file name:
GS911Installer.exe

File type:
Executable application (Win32 EXE)

Language:
English (Rep. Poludniowej Afryki)

Common path:
C:\users\{user}\downloads\gs911downloader.exe

Digital Signature
Signed by:
HEX Microsystems (Pty) Ltd

Authority:
Thawte, Inc.

Valid from:
9/20/2013 2:00:00 AM

Valid to:
9/21/2015 1:59:59 AM

Subject:
CN=HEX Microsystems (Pty) Ltd, O=HEX Microsystems (Pty) Ltd, L=Somerset West, S=Western Cape, C=ZA

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
630B346CEB5AEBC80D6DFA9D5AD3220A

File PE Metadata
Compilation timestamp:
4/10/2014 12:54:52 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:+yn8HIDYGE/q5IKmw2dq4/PC/QOQ+2M/eAFAwTX1qijmdtDT3xKjf+2mVsDBrlHg:1nr0At2qyC/QB+2UeAy7ijmddTKf+2vk

Entry address:
0x104A93

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, 10, 40, 00, E8, 01, 00, 00, 00, 9A, 83, C4, 10, 8B, E5, 5D, E9, D1, 8C, D0, 00, 02, 3C, B5, CB, 65, 13, B9, F8, 93, 68, 91, 55, C6, F4, C2, 09, 7F, BC, F0, 66, BE, E1, 8C, 60, E0, C1, 26, 28, 6F, 57, 1B, 61, 00, A2, D8, F9, 44, C8, 4B, DD, FB, 61, 9A, 28, EF, BC, 48, F0, 1D, 87, C2, D6, C8, 05, 1F, E7, C9, 1B, 93, 4D, 64, 0D, B3, B1, 81, 81, 83, 9B, 73, 3C, 0D, A8, 1F, BB, 36, 5C, 12, C1, 59, BC, 34, 4A, D4, 65, 33, 02, 2C, 64, 5B, 90, 6A, 2E, BC, E0, F0, 41, 67, A7, BF, E4...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
3.3 MB (3,475,968 bytes)

The file gs911downloader.exe has been seen being distributed by the following URL.

http://www.hexcode.co.za/gs911downloader.exe

Scan gs911downloader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.