× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4d62f456d2d05dc042afc55223ae49e4d3698ceb4f0e535a6f1fbb87813c04ca
File name: GeminiNetCommMgr Core
Detection ratio: 0 / 55
Analysis date: 2016-08-09 12:22:13 UTC ( 2 years, 8 months ago )
Antivirus Result Update
Ad-Aware 20160809
AegisLab 20160809
AhnLab-V3 20160809
Alibaba 20160809
ALYac 20160809
Antiy-AVL 20160809
Arcabit 20160809
Avast 20160809
AVG 20160809
Avira (no cloud) 20160809
AVware 20160809
Baidu 20160809
BitDefender 20160809
Bkav 20160809
CAT-QuickHeal 20160809
ClamAV 20160809
CMC 20160804
Comodo 20160806
Cyren 20160809
DrWeb 20160809
Emsisoft 20160809
ESET-NOD32 20160809
F-Prot 20160809
F-Secure 20160809
Fortinet 20160809
GData 20160809
Ikarus 20160809
Jiangmin 20160809
K7AntiVirus 20160809
K7GW 20160809
Kaspersky 20160809
Kingsoft 20160809
Malwarebytes 20160809
McAfee 20160809
McAfee-GW-Edition 20160809
Microsoft 20160809
eScan 20160809
NANO-Antivirus 20160809
nProtect 20160809
Panda 20160809
Qihoo-360 20160809
Sophos AV 20160809
SUPERAntiSpyware 20160809
Symantec 20160809
Tencent 20160809
TheHacker 20160806
TotalDefense 20160808
TrendMicro 20160809
TrendMicro-HouseCall 20160809
VBA32 20160808
VIPRE 20160809
ViRobot 20160809
Yandex 20160808
Zillya 20160809
Zoner 20160809
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 17.10.2006

Product Gemini Network Communication Manager
Original name GNCM.exe
Internal name GeminiNetCommMgr Core
File version 5.2.1.2
Description Provides uniform-interface client-server communication services throughout WAN or off-line media using plug-in connector and simulator modules
Comments MS Visual C++ 6.0 MFC Application / DCOM Server
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2006-10-17 15:06:21
Entry Point 0x000158CA
Number of sections 4
PE sections
Overlays
MD5 acde1bf511d9ec0e0e7eda5215986ab4
File type data
Offset 167936
Size 53
Entropy 4.57
PE imports
RegDeleteKeyA
RegOpenKeyA
RegCloseKey
RegQueryValueA
RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryInfoKeyA
?SetLocalServerInfo@CBSC_ComRegisterLocalServer@@QAEHABU_GUID@@W4ERunningIdentity@@PBD2@Z
?AddErrorLookupService@CBSC_ComRegister@@QAEHABU_GUID@@PBD@Z
??0CBSC_ComRegisterLocalServer@@QAE@XZ
?SetBasicInfo@CBSC_ComRegister@@QAEHABU_GUID@@PBD1I1@Z
?Unregister@CBSC_ComRegisterLocalServer@@UAEHXZ
??1CBSC_ComRegisterLocalServer@@UAE@XZ
?SetServiceInfo@CBSC_ComRegisterService@@QAEHABU_GUID@@PBD1@Z
??1CBSC_ComRegisterService@@UAE@XZ
??0CBSC_ComRegisterService@@QAE@XZ
?InstallOnThread@BSC_CrashHandler@@SAHPBD@Z
?InstallOnProcess@BSC_CrashHandler@@SAHPBD0HP6GJPAU_EXCEPTION_POINTERS@@@Z@Z
?g_cLanguageLibraryPath@BSC_LanguageManager@@2VCString@@A
??0CServiceApp@@QAE@PBDH@Z
?ServiceStart@CServiceApp@@QAE_NXZ
?ReportServiceStartDone@CServiceApp@@QAEX_N@Z
?RemoveService@CServiceApp@@QAE_N_N@Z
?OnServicePause@CServiceApp@@MAEXXZ
??1CServiceApp@@UAE@XZ
?GetServiceName@CServiceApp@@QBE?AVCString@@XZ
?OnServiceShutdown@CServiceApp@@MAEXXZ
?ReportServiceExiting@CServiceApp@@QAEX_N@Z
?OnServiceExit@CServiceApp@@MAEXXZ
?ServiceStop@CServiceApp@@QAE_N_N@Z
?messageMap@CServiceApp@@1UAFX_MSGMAP@@B
?ExitInstance@CServiceApp@@MAEHXZ
?InstallService@CServiceApp@@QAE_NABVCString@@000_N@Z
?OnServiceContinue@CServiceApp@@MAEXXZ
?OnServiceControl@CServiceApp@@MAEXK@Z
?EventLogAdd@CServiceApp@@QAEXGKPBD@Z
?QueryModule@BSC_VersionInfo@@QAEHABVCString@@@Z
??0CRegistry@@QAE@ABV0@PBDK@Z
??1BSC_VersionInfo@@QAE@XZ
??0CRegistry@@QAE@PAUHKEY__@@@Z
??1CRegistry@@UAE@XZ
?Read@CRegistry@@QAEHPBDAA_N@Z
?GetLastErrorText@@YA?AVCString@@XZ
?Write@CRegistry@@QAEHPBDH@Z
?Open@CRegistry@@QAEHPAUHKEY__@@PBDK@Z
?GetErrorText@@YA?AVCString@@K@Z
??1BSC_CommandLineInfo@@UAE@XZ
??0BSC_VersionInfo@@QAE@XZ
?Read@CRegistry@@QAEHPBDAAH@Z
?IsTerminalServicesEnabled@@YAHXZ
?Write@CRegistry@@QAEHPBDABU_GUID@@@Z
??0BSC_CommandLineInfo@@QAE@XZ
?QueryDefaultModule@BSC_VersionInfo@@QAEHXZ
?Write@CRegistry@@QAEHPBD_N1@Z
?Read@CRegistry@@QAEHPBDAAVCString@@@Z
?Write@CRegistry@@QAEHPBD0@Z
?Read@CRegistry@@QAEHPBDAAU_GUID@@@Z
?ListKeys@CRegistry@@QAEHAAVCStringArray@@@Z
?HasSwitch@BSC_CommandLineInfo@@QAE_NPBD@Z
?CreateKey@CRegistry@@QAEHPAUHKEY__@@PBDK@Z
?DeleteKey@CRegistry@@QAEHPBD@Z
GLM_RegisterSectionA
GLM_RegisterTemplateA
GLM_Uninitialize
GLM_RegisterThreadA
GLM_UnregisterProcess
GLM_Initialize
GLM_RegisterProcessA
GLM_UnregisterThread
GLM_LogMessageA
GLM_LogSimpleMessageA
GetLastError
EnterCriticalSection
lstrlenW
lstrlenA
GetFileAttributesA
GlobalFree
WaitForSingleObject
SetEvent
HeapDestroy
GetTickCount
GetModuleFileNameA
RemoveDirectoryA
DeleteCriticalSection
GetStartupInfoA
GetCurrentProcessId
CreateDirectoryA
DeleteFileA
MultiByteToWideChar
GetCommandLineA
GetProcAddress
ReadFile
CreateMutexA
GetTempPathA
WideCharToMultiByte
GetModuleHandleA
FindFirstFileA
InterlockedExchange
WriteFile
CloseHandle
ResetEvent
FindNextFileA
LocalFree
ResumeThread
InitializeCriticalSection
GlobalAlloc
FindClose
InterlockedDecrement
Sleep
CreateFileA
GetCurrentThreadId
InterlockedIncrement
GetFileSize
LeaveCriticalSection
Ord(4080)
Ord(537)
Ord(2393)
Ord(1193)
Ord(939)
Ord(3136)
Ord(6383)
Ord(665)
Ord(6883)
Ord(5440)
Ord(6143)
Ord(3259)
Ord(940)
Ord(5214)
Ord(1979)
Ord(1151)
Ord(6215)
Ord(2915)
Ord(366)
Ord(922)
Ord(1175)
Ord(1105)
Ord(5199)
Ord(941)
Ord(4465)
Ord(5300)
Ord(1200)
Ord(1168)
Ord(3738)
Ord(348)
Ord(2982)
Ord(825)
Ord(3081)
Ord(5710)
Ord(801)
Ord(5442)
Ord(4424)
Ord(540)
Ord(2448)
Ord(2554)
Ord(823)
Ord(2107)
Ord(5572)
Ord(2512)
Ord(541)
Ord(4079)
Ord(3147)
Ord(6375)
Ord(3262)
Ord(1576)
Ord(538)
Ord(2614)
Ord(5856)
Ord(3663)
Ord(3346)
Ord(858)
Ord(2396)
Ord(3831)
Ord(353)
Ord(3825)
Ord(2976)
Ord(1089)
Ord(2985)
Ord(3903)
Ord(3922)
Ord(2818)
Ord(2044)
Ord(4160)
Ord(800)
Ord(535)
Ord(3830)
Ord(6394)
Ord(663)
Ord(3079)
Ord(4129)
Ord(5450)
Ord(5714)
Ord(5289)
Ord(4622)
Ord(2841)
Ord(924)
Ord(4486)
Ord(4698)
Ord(5307)
Ord(5834)
Ord(5302)
Ord(860)
Ord(5731)
Ord(3318)
_purecall
__p__fmode
malloc
sscanf
__CxxFrameHandler
??1type_info@@UAE@XZ
_controlfp
memset
__dllonexit
_stricmp
__RTDynamicCast
strtoul
strlen
_except_handler3
?terminate@@YAXXZ
_onexit
exit
_XcptFilter
memcmp
strrchr
__setusermatherr
_adjust_fdiv
sprintf
_acmdln
_CxxThrowException
__p__commode
free
__getmainargs
_initterm
_setmbcp
memmove
strchr
memcpy
strcpy
time
_strnicmp
_exit
vsprintf
strcmp
__set_app_type
CreateErrorInfo
VariantChangeType
VariantClear
SetErrorInfo
GetErrorInfo
SysFreeString
VariantInit
SendMessageA
MessageBeep
PeekMessageA
PostThreadMessageA
UpdateWindow
CoInitializeEx
CoRegisterClassObject
CoTaskMemAlloc
CoRevokeClassObject
CoUninitialize
CoCreateGuid
CoCreateInstance
CoSuspendClassObjects
CoDisconnectObject
CoFreeUnusedLibraries
CLSIDFromProgID
CLSIDFromString
CoResumeClassObjects
CoGetPSClsid
CoInitializeSecurity
CoCreateInstanceEx
OleRun
CoTaskMemFree
StringFromGUID2
CoGetClassObject
Number of PE resources by type
RT_ICON 2
RT_STRING 2
RT_MESSAGETABLE 1
RT_MENU 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 7
CZECH DEFAULT 1
PE resources
Debug information
ExifTool file metadata
FileTypeExtension
exe

LegalTrademarks
Svatopluk D dic, Viktor Volmut

UninitializedDataSize
0

Comments
MS Visual C++ 6.0 MFC Application / DCOM Server

LinkerVersion
6.0

ImageVersion
4.0

FileSubtype
0

FileVersionNumber
5.2.1.2

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Provides uniform-interface client-server communication services throughout WAN or off-line media using plug-in connector and simulator modules

CharacterSet
Unicode

InitializedDataSize
69632

CharacterBuild
ANSI version

OriginalFileName
GNCM.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 17.10.2006

FileVersion
5.2.1.2

TimeStamp
2006:10:17 16:06:21+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
GeminiNetCommMgr Core

ProductVersion
5.2.1.2

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
BSC Praha, spol. s r.o.

CodeSize
98304

ProductName
Gemini Network Communication Manager

ProductVersionNumber
5.2.1.2

EntryPoint
0x158ca

ObjectFileType
Executable application

File identification
MD5 e2989ed5b6c2d23d9bf360732f16b3e4
SHA1 e477f07092cd7190e4bf5d17ecdecef35dbd97dc
SHA256 4d62f456d2d05dc042afc55223ae49e4d3698ceb4f0e535a6f1fbb87813c04ca
ssdeep
3072:YSwghqbaoN+Eik3Ebi8oelu8XHJAegcRQKcvsTAnj:3hg9+MRAg8XHJMsTAj

authentihash 4df066d06e3a94b34cbda145400b772c5dd08432122c387dec5ad00a22fd5cb2
imphash 7a9648c59cb0f3a0743d815d50cdc9f2
File size 164.1 KB ( 167989 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.4%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe overlay

VirusTotal metadata
First submission 2009-08-12 07:16:03 UTC ( 9 years, 8 months ago )
Last submission 2009-08-12 07:16:03 UTC ( 9 years, 8 months ago )
File names GeminiNetCommMgr Core
GNCM.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!