home

JamCaptureCmd.exe

JamCaptureCmd Module

NHN Entertainment Corp.

Publisher:
NHN Entertainment Corp.  (signed and verified)

Product:
JamCaptureCmd Module

Version:
1, 0, 0, 1

MD5:
ec897370297fe184d7c71d7aa0d7c360

SHA-1:
da080aa48f67b547ca3f5f491360b0c540cce015

SHA-256:
2042094a4fdada2b70807ebc1c6f1aa6704612a5e988b240f0018d3547add27e

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/17/2025 9:03:23 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
Malware.RDM.38!5.2C
23.00.65.16718

File size:
488.6 KB (500,304 bytes)

Product version:
1, 0, 0, 1

Copyright:
NHN Entertainment Corp.

Original file name:
JamCaptureCmd.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\dooraymessenger\app-0.5.1\resources\app.asar.unpacked\native\windows\jamcapturecmd.exe

Digital Signature
Signed by:
NHN Entertainment Corp.

Authority:
Apple Inc.

Valid from:
3/13/2014 11:23:00 AM

Valid to:
3/14/2019 11:23:00 AM

Subject:
C=KR, O=NHN Entertainment Corp., OU=32H93D7PFQ, CN=Developer ID Application: NHN Entertainment Corp. (32H93D7PFQ), OID.0.9.2342.19200300.100.1.1=32H93D7PFQ

Issuer:
C=US, O=Apple Inc., OU=Apple Certification Authority, CN=Developer ID Certification Authority

Serial number:
5A15F9C15EAA6BD9

File PE Metadata
Compilation timestamp:
3/2/2015 7:02:09 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:9BIapgXsWkrTQfO37R/3R+JvMrBmxSviq9c2NMvfFzgO/C4sc2LLfYfPQM:M6SCmxSvpwfxgP4sc2vfY3j

Entry address:
0x2C147

Entry point:
E8, 28, 6D, 00, 00, E9, 79, FE, FF, FF, 6A, 14, 68, 58, 8C, 44, 00, E8, F3, 0F, 00, 00, 83, 65, FC, 00, FF, 4D, 10, 78, 3A, 8B, 4D, 08, 2B, 4D, 0C, 89, 4D, 08, FF, 55, 14, EB, ED, 8B, 45, EC, 89, 45, E4, 8B, 45, E4, 8B, 00, 89, 45, E0, 8B, 45, E0, 81, 38, 63, 73, 6D, E0, 74, 0B, C7, 45, DC, 00, 00, 00, 00, 8B, 45, DC, C3, E8, 6D, 6D, 00, 00, 8B, 65, E8, C7, 45, FC, FE, FF, FF, FF, E8, E9, 0F, 00, 00, C2, 10, 00, 6A, 0C, 68, 78, 8C, 44, 00, E8, 95, 0F, 00, 00, 83, 65, E4, 00, 8B, 75, 0C, 8B, C6, 0F, AF, 45...
 
[+]

Entropy:
6.9820

Code size:
257.5 KB (263,680 bytes)

Scan JamCaptureCmd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.