home

lgdpfmanager.exe

MinimonAgent MFC Application

DEVGURU CO LTD

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘LG DPF Manager’.
Publisher:
Devguru  (signed by DEVGURU CO LTD)

Product:
MinimonAgent MFC Application

Version:
2, 0, 0, 0

MD5:
305de340996bcfeacc67dc9908f28d78

SHA-1:
507e042b32a1ac72e7864845629ddb704a8f67e0

SHA-256:
8a4c809e4baed0943530ccaa2321871b2bd4274f1b03c0e594854c859602b8c4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 12:19:39 PM UTC  (today)

File size:
614.6 KB (629,336 bytes)

Product version:
2, 0, 0, 0

Copyright:
Copyright Devguru (C) 2009

Original file name:
MinimonAgent.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\lg dpf manager\lgdpfmanager.exe

Digital Signature
Signed by:
DEVGURU CO LTD

Authority:
VeriSign, Inc.

Valid from:
6/15/2009 2:00:00 AM

Valid to:
7/14/2010 1:59:59 AM

Subject:
CN=DEVGURU CO LTD, OU=R&D Team, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=DEVGURU CO LTD, L=Seocho-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
249D941BCFDF576C3ADC926A10704425

File PE Metadata
Compilation timestamp:
8/11/2009 10:41:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:P3Lx8lJfK5FSrIT5RON/C8/NFwPb5vEnbdMaFSXi7SNJC9gOSTdBqzCnb7JD6hHW:a05qYAvFbnWaF+kgOSTdbvJOHDmtj7sg

Entry address:
0x4EFCE

Entry point:
E8, 2C, 5D, 00, 00, E9, 17, FE, FF, FF, 55, 8B, EC, 56, 8B, 75, 14, 57, 33, FF, 3B, F7, 75, 04, 33, C0, EB, 65, 39, 7D, 08, 75, 1B, E8, 7E, 18, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57, 57, E8, 08, 62, 00, 00, 83, C4, 14, 8B, C6, EB, 45, 39, 7D, 10, 74, 16, 39, 75, 0C, 72, 11, 56, FF, 75, 10, FF, 75, 08, E8, 80, 5D, 00, 00, 83, C4, 0C, EB, C1, FF, 75, 0C, 57, FF, 75, 08, E8, CF, 0F, 00, 00, 83, C4, 0C, 39, 7D, 10, 74, B6, 39, 75, 0C, 73, 0E, E8, 2F, 18, 00, 00, 6A, 22, 59, 89, 08, 8B, F1, EB, AD, 6A, 16...
 
[+]

Code size:
420 KB (430,080 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
LG DPF Manager

Command:
C:\Program Files\lg dpf manager\lgdpfmanager.exe


Scan lgdpfmanager.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.