How to remove gom64.exe
gom64.exe
The module gom64.exe has been detected as Trojan.Heur!
File Details
| Product Name: | GOM Player Plus |
| Company Name: | GOM @amp; Company |
| MD5: | e4d6f34b009a205e665a3d9703b6aca7 |
| Size: | 12 MB |
| First Published: | 2018-07-06 06:07:40 (7 years ago) |
| Latest Published: | 2021-11-02 21:15:34 (4 years ago) |
| Status: | Trojan.Heur! (on last analysis) | |
| Analysis Date: | 2021-11-02 21:15:34 (4 years ago) |
Overview
| Signed By: | GRETECH |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %programfiles%\gretech |
| %sysdrive%\total commander\soft |
| %programfiles%\gretech |
File Names:
| GOM64.EXE |
| gom64.exe |
Geography:
| 33.3% | ||
| 33.3% | ||
| 33.3% |
OS Version:
| Windows 7 | 66.7% | |
| Windows 10 | 33.3% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x00516950 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 6064128 | bb686987a75eab3d57828b36f3613a5f |
| RT_CODE | 2560 | a5464b4862edf5afc327cdb27ad95db7 |
| .rdata | 2460160 | 44a5eecca4ee5a38f66256c7523e003c |
| .data | 138240 | ec901263b33e39ed05dbf08fb20f1d7a |
| .pdata | 295936 | 52a55b090b242fe27ce34e53b56c8c22 |
| .GOMSH | 512 | bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc | 4263424 | 20a4aa874806adb2a54fc946a7b1a237 |
| .reloc | 120320 | c76fe705104b1cf2ee82e8afd02fb2cd |
More information:
Download GridinSoft
Anti-Malware - Removal tool for gom64.exe
