fileupdate.exe

上海骏梦网络科技有限公司

Publisher:
上海骏梦网络科技有限公司  (signed and verified)

MD5:
2fe28fceadff73d13a8d79e241ee2662

SHA-1:
8070b2acee7dfe93060cf2eed68476cde42f5d8d

SHA-256:
81ce913f82b8d848f6a5a76410769a7cfda6cbb6eb73d1761a9ce38ebadb6201

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 12:50:19 PM UTC  (today)

File size:
123.6 KB (126,528 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\roaming\gm\xianjian\fileupdate.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
7/23/2013 5:54:40 PM

Valid to:
7/23/2016 5:54:40 PM

Subject:
CN=上海骏梦网络科技有限公司, OU=商务部, O=上海骏梦网络科技有限公司, L=上海, S=上海, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121E91DECC1A1D4F1F9EFD938A9AE91EB19

File PE Metadata
Compilation timestamp:
9/6/2013 6:28:30 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:JQTD1Zr9xlfa+Mf7wfmoXnozKm7zPb9zCW8VTR8m:J0r9j63oXoum7tzCF7

Entry address:
0x534D1

Entry point:
9C, 60, E8, 00, 00, 00, 00, 5D, 83, ED, 07, 8D, 8D, 07, FE, FF, FF, 80, 39, 01, 0F, 84, 42, 02, 00, 00, C6, 01, 01, 8B, C5, 2B, 85, 9B, FD, FF, FF, 89, 85, 9B, FD, FF, FF, 01, 85, CB, FD, FF, FF, 8D, B5, 0F, FE, FF, FF, 01, 06, 55, 56, 6A, 40, 68, 00, 10, 00, 00, 68, 00, 10, 00, 00, 6A, 00, FF, 95, 43, FE, FF, FF, 85, C0, 0F, 84, 69, 03, 00, 00, 89, 85, C3, FD, FF, FF, E8, 00, 00, 00, 00, 5B, B9, 67, 03, 00, 00, 03, D9, 50, 53, E8, B0, 02, 00, 00, 5E, 5D, 8B, 36, 8B, FD, 03, BD, 8B, FD, FF, FF, 8B, DF, 83...
 
[+]

Entropy:
7.5944

Packer / compiler:
NsPacK V3.7

Scan fileupdate.exe - Powered by Reason Core Security