iMONService.exe

iMON-Client Service

Gyeyoung TNI Corp.

It runs as a separate (within the context of its own process) windows Service named “iMONClientService”.
Publisher:
Gyeyoung TNI Corporation.  (signed by Gyeyoung TNI Corp.)

Product:
iMON-Client Service

Version:
1, 0, 1, 2

MD5:
02f619a73b170386ba02388be2a13a82

SHA-1:
772c810055c1512eda8e6efa78ac82cc6f2955f6

SHA-256:
c94c68cdcb1592982f1dfce4c608005674cc5c7d204a4411414dbff2095f1e5e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
9/26/2017 7:13:40 PM UTC  (today)

File size:
1.9 MB (1,981,784 bytes)

Product version:
1, 0, 1, 2

Copyright:
(c) Gyeyoung TNI Corporation. All rights reserved.

Original file name:
iMONService.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\imonclient\imonservice.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
11/28/2012 9:00:00 AM

Valid to:
11/29/2013 8:59:59 AM

Subject:
CN=Gyeyoung TNI Corp., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Gyeyoung TNI Corp., L=Songpa-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0366027E3162BBE5E3BC16A655138173

File PE Metadata
Compilation timestamp:
5/28/2013 2:53:40 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
49152:E5gft3dpsDc3Hg9FIwShGtfd3U40P7ZRAsaJthjhSGScFUUdPTnUHxZbJk3JTdTM:xoDpsdGtfd3UrZRzithjhSGSiXP2xZbr

Entry address:
0x114F5C

Entry point:
E8, 02, D2, 00, 00, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 57, 8B, 7D, 10, 8B, C7, 83, E8, 00, 0F, 84, B7, 14, 00, 00, 48, 0F, 84, 9F, 14, 00, 00, 48, 0F, 84, 6C, 14, 00, 00, 48, 0F, 84, 21, 14, 00, 00, 48, 0F, 84, 99, 13, 00, 00, 8B, 4D, 0C, 8B, 45, 08, 53, 6A, 20, 5A, E9, 32, 04, 00, 00, 8B, 30, 3B, 31, 74, 74, 0F, B6, 30, 0F, B6, 19, 2B, F3, 74, 13, 33, DB, 85, F6, 0F, 9F, C3, 8D, 74, 1B, FF, 85, F6, 0F, 85, 2B, 04, 00, 00, 0F, B6, 70, 01, 0F, B6, 59, 01, 2B, F3, 74, 13, 33, DB, 85, F6, 0F, 9F, C3...
 
[+]

Entropy:
6.4260

Code size:
1.4 MB (1,422,848 bytes)

Service
Display name:
iMONClientService

Type:
Win32OwnProcess

Depends on:
winmgmt COMSysApp Netman


Scan iMONService.exe - Powered by Reason Core Security