Files signed by YES24 Corp.

YES24 Corp.

YES24 Corp. is a digital signature publisher name observed in ThreatInfo records. This page groups 16 signed files and shows whether those files are currently classified as clean, undefined, or detected.

A digital signature can help identify a publisher, but it does not always prove that a file is safe. Certificates may be abused, stolen, expired, or attached to modified installers, so the file hash and detection status should be checked together.

Detection signal

Detected files use this signature name

At least one file signed as YES24 Corp. is detected by GridinSoft. Review the hashes below and scan the device if one of these files is present.

Download GridinSoft scanner
wow_helper.exe 1e389bedc6f3214f2635c468f4bde04e Adware.Wajam
UnDrmClient.dll 5b369578e1e980bee1d54ce1b55bcfff Under review
YES24eBookUpdater.exe bf96f6cf9340369eb69f6e6c3c22cb81 Adware.Wajam
wow_helper.exe 23c7244ec8f1fd54d62a7d7fec847730 Adware.Wajam
YES24eBookUpdater.exe 381eaa698408e0f09e22479f69b489fd Adware.Wajam
RunaEngine.dll 15dec3db1583f0a80a5c44ee0c12cc18 Under review
YES24eBook.exe 3a693a761afb778210889d3f7ea4fe25 Adware.Wajam
RunaEngineRender.exe e7c195045aa4d18243e08bb9bc95c213 Adware.Wajam
YES24eBook.exe 25d7478e0d6171db767427db87d8bcc5 Adware.Wajam
RunaEngineRender.exe 3876fa65c7b12f5dc5be413192bc35e6 Adware.Wajam
YES24eBookUpdater.exe c3ee42eac3f5fb606290f988b14888c8 Adware.Wajam
RunaEngineRender.exe 234342835230112ce001b4842d0762c6 Adware.Wajam
RunaEngine.dll ab0056e0787497316f0e5708dc4a082e Under review
wow_helper.exe 5d6ab7664ce37d70f7d184882d281556 Adware.Wajam
YES24eBook.exe f053c265dd5281dbf255a87cdee8c382 Adware.Wajam
wow_helper.exe b4dfe7ab1bdc5d84b6b4041ebc33c576 Adware.Wajam

Certificate review summary

Do not trust this signature name by itself

ThreatInfo found detected files associated with YES24 Corp.. A matching signature name should be checked together with the file hash, detection verdict, and source path.

Recommended checks

  • Open any matching file report and compare the MD5 hash.
  • Confirm the file path and download source before trusting the binary.
  • Run a GridinSoft scan if a detected file from this list is present.