dtd_tw.exe

《动天地》登陆程序

chengdu jule technology co.,ltd

Publisher:
chengdu jule technology co.,ltd  (signed and verified)

Product:
《动天地》登陆程序

Version:
1, 0, 0, 1

MD5:
fcc2166baa4df5efbb3c23abde7609fe

SHA-1:
af3c408844596453cf01fb8c3ed2abe2d9e5be86

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 5:26:30 PM UTC  (today)

File size:
1.3 MB (1,354,176 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright (C) 2012

Original file name:
gameupdater.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\Application data\julegame\dtd_tw\dtd_tw.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
4/19/2013 8:00:00 AM

Valid to:
5/20/2015 7:59:59 AM

Subject:
CN="chengdu jule technology co.,ltd", OU=online game department, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="chengdu jule technology co.,ltd", L=chengdu, S=sichuan, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
615EC218A2AA4BDC88B6DDCB29DEBFA9

File PE Metadata
Compilation timestamp:
11/14/2013 10:10:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:G3AeWOTNITnzfuScqLm59bQrRRdE5m9XRd9TwTHpffONF5xZB0G8tHD+/hGtMFLJ:GWz2QxE5m9XRd9TwTHdmNrzi+/hGtMFt

Entry address:
0x403E8

Entry point:
E8, E9, 69, 00, 00, E9, 17, FE, FF, FF, E9, D0, 4B, 00, 00, 55, 8B, EC, 83, EC, 0C, 53, 56, 57, 33, FF, 39, 7D, 0C, 74, 24, 39, 7D, 10, 74, 1F, 8B, 75, 14, 3B, F7, 75, 1F, E8, 18, 73, 00, 00, 57, 57, 57, 57, 57, C7, 00, 16, 00, 00, 00, E8, D0, 18, 00, 00, 83, C4, 14, 33, C0, 5F, 5E, 5B, C9, C3, 8B, 4D, 08, 3B, CF, 74, DA, 83, C8, FF, 33, D2, F7, 75, 0C, 39, 45, 10, 77, CD, 8B, 7D, 0C, 0F, AF, 7D, 10, 66, F7, 46, 0C, 0C, 01, 89, 4D, FC, 89, 7D, F4, 8B, DF, 74, 08, 8B, 46, 18, 89, 45, F8, EB, 07, C7, 45, F8...
 
[+]

Entropy:
7.4025

Code size:
572 KB (585,728 bytes)

Scan dtd_tw.exe - Powered by Reason Core Security