» windownetworkmanager_.exe
Overview
Analysis
File Details
Programs (1)

windownetworkmanager_.exe

WindowNetworkManager

enliple Ltd.

The application windownetworkmanager_.exe by enliple has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Window Network Manager by Graftor which is a potentially unwanted software program.

File name:

Publisher:

enliple Ltd. (signed and verified)

Product:

WindowNetworkManager

Version:

8.05

MD5:

f13afc0a3611ff2637236f2565428fdb

SHA-1:

72f5de46f9046f0cab4b3a187f75b0f298c3cc38

SHA-256:

977413c8194bea2b240f8e5431b4b1708936cb11d3f5074a91085e7a1154970b

Scanner detections:

1 / 68

Status:

Potentially unwanted

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:

4/19/2024 2:23:36 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP (M)

16.8.9.4

File size:

1.6 MB (1,728,360 bytes)

Product version:

8.05

Original file name:

WindowNetworkManager.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\window network manager\windownetworkmanager_.exe

Digital Signature

Signed by:

enliple Ltd.

Authority:

Thawte, Inc.

Valid from:

6/26/2013 9:00:00 AM

Valid to:

6/27/2015 8:59:59 AM

Subject:

CN=enliple Ltd., OU=Internet Dept, O=enliple Ltd., L=Guro-gu, S=SEOUL, C=KR

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

178A151BFE91D2CFD345640D3EE64736

File PE Metadata

Compilation timestamp:

1/28/2014 5:01:15 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

24576:nDarnUr84f4qUKH6FtcRyA+sqXmHez0UA0MFH:wd4g0e4UA08H

Entry address:

0x6F38

Entry point:

68, E0, 43, 44, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 48, 00, 00, 00, 00, 00, 00, 00, 7C, FE, 2C, A4, E9, 1B, D1, 44, 92, 40, A5, 06, B9, 21, BA, 0C, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 57, 69, 6E, 64, 6F, 77, 4E, 65, 74, 77, 6F, 72, 6B, 4D, 61, 6E, 61, 67, 65, 72, 00, 3A, 5C, 57, 00, 00, 00, 00, FF, CC, 31, 00, 77, EC, 6D, 79, 6E, F3, 27, 62, 4A, A6, D1, D1, AB, A8, 86, F2, 62, B3, DE, 8D, 27, C5, 21, 89, 47, 9E, 70, C6, 08, 58, C6, 55, 0E, 3A, 4F, AD... 
[+]

Entropy:

6.1169

Developed / compiled with:

Microsoft Visual Basic v5.0/v6.0

Code size:

1.2 MB (1,216,512 bytes)

The file windownetworkmanager_.exe has been discovered within the following program.

Window Network Manager by Graftor

85% remove it

Remove windownetworkmanager_.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.