home

gwmvidmr.dll

GW Micro, Inc.

Publisher:
GW Micro, Inc.  (signed and verified)

MD5:
7649ae10f7f5f5f6a44ee56b82f2b217

SHA-1:
980c39cee7c083015542a558a4ede7d92f22eb51

SHA-256:
79e0bd01d558d0752617a1b6f46ceceed6a859e0938c567b487e9552a07f134b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 3:14:00 AM UTC  (today)

File size:
51.5 KB (52,784 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\disk1\mirror\gwmvidmr.dll

Digital Signature
Signed by:
GW Micro, Inc.

Authority:
VeriSign, Inc.

Valid from:
3/1/2007 8:00:00 AM

Valid to:
3/1/2010 7:59:59 AM

Subject:
CN="GW Micro, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="GW Micro, Inc.", L=Fort Wayne, S=Indiana, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
53566291FBA69ABCB6D21C7C5FFE0D57

File PE Metadata
Compilation timestamp:
9/19/2009 1:35:48 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:4VIdSHRv/yqkIxTKyhJkzy+nsesWqp5ENHoXm3buWmN7cBUZy/hDhlpvvU4oBuW4:STKyhJ262xky/VjpvvXMRnhO/

Entry address:
0x5880

Entry point:
55, 8B, EC, 83, EC, 14, C7, 45, F8, 00, 00, 00, 00, C7, 45, FC, 00, 00, 00, 00, C7, 45, EC, 00, 00, 00, 00, C7, 45, F0, 00, 00, 00, 00, C7, 45, F4, 00, 00, 00, 00, FF, 15, 88, A0, 3F, B2, A3, EC, D9, 3F, B2, FF, 15, 88, A0, 3F, B2, A3, F0, D9, 3F, B2, 68, 47, 77, 6D, 56, A1, D0, C2, 3F, B2, C1, E0, 03, 50, 6A, 00, FF, 15, 2C, A0, 3F, B2, A3, AC, D9, 3F, B2, 83, 3D, AC, D9, 3F, B2, 00, 74, 68, C7, 45, EC, 00, 00, 00, 00, EB, 09, 8B, 4D, EC, 83, C1, 01, 89, 4D, EC, 8B, 55, EC, 3B, 15, D0, C2, 3F, B2, 73, 32...
 
[+]

Entropy:
6.3038

Developed / compiled with:
Microsoft Visual C++

Code size:
33.5 KB (34,304 bytes)

Scan gwmvidmr.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.