jyjh.exe

602游戏

Publisher:
602游戏

Version:
5.8.8.9

MD5:
5c5c1bdd475c4072853db910526cbe15

SHA-1:
a05c1ef0475651ae6fe4992f9d75fb279148fa8e

SHA-256:
8e6f4804333f08f8fcfad1bab9cb237e216dd565cf5e17fad03ff53f69aa6354

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/5/2024 10:34:26 PM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Trojan.Win32.YouXun
4.0.3.1616

ESET NOD32
Win32/RiskWare.YouXun.B application
7.0.302.0

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D [F]
23.00.65.16104

File size:
1.8 MB (1,845,248 bytes)

Product version:
5.8.8.9

Copyright:
Copyright (C) 2015-2016

Original file name:
jyjh.exe

File type:
Executable application (Win32 EXE)

Language:
Chinese (Simplified, China)

Common path:
C:\Program Files\jyjh\jyjh.exe

File PE Metadata
Compilation timestamp:
1/4/2016 9:36:09 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:LTHvPx++1zcM7xVi70aLAcoHbGz7b9drDNlxAS5ASR:vx+CzaLLAckbGzHNlxAS5AS

Entry address:
0x46E10

Entry point:
E8, D4, 68, 00, 00, E9, 79, FE, FF, FF, 3B, 0D, F0, C6, 47, 00, 75, 02, F3, C3, E9, 56, 69, 00, 00, 8B, FF, 55, 8B, EC, 8B, 45, 14, 56, 57, 33, FF, 3B, C7, 74, 47, 39, 7D, 08, 75, 1B, E8, D1, 2B, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57, 57, E8, 3E, 0A, 00, 00, 83, C4, 14, 8B, C6, EB, 29, 39, 7D, 10, 74, E0, 39, 45, 0C, 73, 0E, E8, AC, 2B, 00, 00, 6A, 22, 59, 89, 08, 8B, F1, EB, D7, 50, FF, 75, 10, FF, 75, 08, E8, D3, 0F, 00, 00, 83, C4, 0C, 33, C0, 5F, 5E, 5D, C3, 8B, FF, 55, 8B, EC, 83, EC, 20, 56, 33...
 
[+]

Entropy:
7.2808

Code size:
388 KB (397,312 bytes)

The file jyjh.exe has been seen being distributed by the following URL.

Scan jyjh.exe - Powered by Reason Core Security