home

pgcommon.dll

ProxyGate

GOLD CLICK LIMITED

The module pgcommon.dll, “PG Network Component” by GOLD CLICK LIMITED has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Gold Click Ltd  (signed by GOLD CLICK LIMITED)

Product:
ProxyGate

Description:
PG Network Component

Version:
3.0.0.16

MD5:
d3bbd68bb16ee440698cfb7e285ba69c

SHA-1:
b1d5101e1489faef8e2c99d566f43f0fefbcaec2

SHA-256:
f5d614e48cddf188eed5ad3041d9bbdd66389d63fc2b1a0c296a5dc7d1ce2f3f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
5/11/2024 10:11:01 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.GOLDCLICK (M)
16.1.6.5

File size:
1.3 MB (1,392,704 bytes)

Product version:
3.0.0.16

Copyright:
Gold Click Ltd

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\proxygate\pgcommon.dll

Digital Signature
Signed by:
GOLD CLICK LIMITED

Authority:
GlobalSign nv-sa

Valid from:
3/26/2015 11:17:01 PM

Valid to:
3/26/2016 11:17:01 PM

Subject:
CN=GOLD CLICK LIMITED, O=GOLD CLICK LIMITED, L=Birmingham, C=GB

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121EB61871B3A6BD9AD6F5CED626E0A4574

File PE Metadata
Compilation timestamp:
12/22/2015 10:25:09 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:JrruhUE0W09i/7lvGIee5AbLMR+Xo+QpEq12cBJSH/12Q9qDiL:Zrup09G7dD5Ab4E4+Quq12cBJSHcd+L

Entry address:
0x12C0AC

Entry point:
55, 8B, EC, 83, C4, C0, B8, A0, 64, 52, 00, E8, B4, 20, EE, FF, B8, 90, 64, 52, 00, A3, 5C, 5C, 53, 00, B8, 01, 00, 00, 00, E8, C0, A3, FF, FF, E8, 8F, CE, ED, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.6003

Developed / compiled with:
Microsoft Visual C++

Code size:
1.2 MB (1,222,656 bytes)

Remove pgcommon.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.