home

sframe.exe

Gala Lab Corp.

Publisher:
Gala Lab Corp.  (signed and verified)

MD5:
039c2d336b921e21b66caea07e668baa

SHA-1:
827b95e517e37f8210be6d1f571ee9392b943506

SHA-256:
1e49a6ac12d37db0155959bff09285618c4b6d792424b075150e01dc58c06a2f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 7:17:31 PM UTC  (today)

File size:
4 MB (4,202,568 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\sframe.exe

Digital Signature
Signed by:
Gala Lab Corp.

Authority:
Thawte, Inc.

Valid from:
8/23/2012 2:00:00 AM

Valid to:
8/24/2014 1:59:59 AM

Subject:
CN=Gala Lab Corp., OU=Tech Support Headquarters, O=Gala Lab Corp., L=Gangnam-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
0DF9EE3CFBC6D8DEE0777F9263CE06DF

File PE Metadata
Compilation timestamp:
2/4/2013 3:56:29 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:4l5W4ROJ2QXeRmQnw2q/cIjssinyp4ZgJbmBv4lEViO1d0:4bFOJ2QXUnTI4singMq6vcEVr0

Entry address:
0x1000

Entry point:
68, 01, 30, E3, 00, E8, 01, 00, 00, 00, C3, C3, F0, 15, E3, 5C, E1, 71, BC, D4, 88, 46, 8B, CA, 21, B2, E0, F3, 51, 7E, 76, B5, 0E, 23, 9F, 27, 8D, 7F, 27, 2F, 14, 17, AA, 36, 1D, 9A, B1, D4, 82, 9F, F3, 10, 67, 6C, 40, 5C, 29, ED, EE, 2A, 7B, D6, 29, 7C, 39, 43, 86, 7E, D6, 64, 48, DB, 47, 88, 54, 58, 47, A3, FA, AA, 01, FF, DA, 3C, 7A, F1, 6E, DF, AB, 6E, 8D, 15, F0, 11, FE, 2F, C2, 99, DE, FC, 17, A8, C4, 71, 2C, 56, 63, 16, 66, BC, 6C, C8, E0, 7E, 83, AB, C5, 8E, 42, 00, 01, 99, BE, A1, B9, 32, 55, 28...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
6.7 MB (7,012,352 bytes)

Scan sframe.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.