» Galapo
Digital Signature
Files (11)

Galapo

Publisher Information

Authority:

Root Agency

Valid from:

5/6/2010 4:53:23 AM

Valid to:

12/31/2039 3:59:59 PM

Subject:

CN=Galapo

Issuer:

CN=Root Agency

Serial number:

643d723923fd97954205b828c90e271c

Status:

Inconclusive detections from multiple engines

Scan engine

Details

Detections

ESET NOD32

Win64/HideRun, Win32/HideRun

50.00%

AVG

HackTool

50.00%

McAfee

Hiderun!2C91ECE140DB

50.00%

VIPRE Antivirus

HackTool.Win32.HideRun.GeN (not malicious)

50.00%

K7 AntiVirus

Trojan

50.00%

Bkav FE

W32.Clodc2d.Trojan

25.00%

Norman

HideRun.E

25.00%

Sophos

HideRun

25.00%

Baidu Antivirus

Trojan.Win32.HideRun

25.00%

Fortinet FortiGate

Riskware/HideRun

25.00%

0 / 68

ramstatus.exe (bc1dfc7a5c3cb9dda98eea82a331c5bd)

0 / 68

sleep.exe (0b6bc95cb1ac3fb1ee7ee6a78d34f2bb)

0 / 68

BroadcastEnvChange.exe (c267abebbab619a7e0bad38ba1fb3505)

1 / 68

sleep.exe (b4149755f1f3fb92268ee19725233ed1)

0 / 68

BroadcastEnvChange.exe (924d221603ae9a39e56003937453b296)

0 / 68

ckill.exe (85a84fb866c116789e291796e297ce15)

0 / 68

BroadcastEnvChange.exe (86b1d34a6f2db21698f43d26cb401124)

1 / 68

expenvvar_x86.exe (d1ee6848e4001e24723e325820c42212)

13 / 68 (Malware)

hiderun_x86.exe (2c91ece140db4d25d806da267667cc9d)

2 / 68 (inconclusive)

hiderunex_x64.exe (70d6b3d2aad144c5960adcf167662277)

0 / 68

hiderunex_x86.exe (3c09935ec883512770467d01d4d2230f)

* Note, the details and description above are based on the code signing digital signature issued to Galapo by Root Agency on May 06, 2010 with the serial number '643d723923fd97954205b828c90e271c'.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.