home

IMJPMIG.EXE

Microsoft IME 2002

Microsoft Corporation

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘IMJPMIG8.1’.
Publisher:
Microsoft Corporation

Product:
Microsoft IME 2002

Description:
Microsoft IME

Version:
8.1.4202.0

MD5:
770c11765e49867fb47dcbc062fbaae8

SHA-1:
9bf7bfe7e47fc8ee7e3d3f9a29f46c7e68407740

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/1/2024 6:41:29 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Sality
160917-0

File size:
272.1 KB (278,584 bytes)

Product version:
8.1.4202.0

Copyright:
Copyright (C) 1995-2001 Microsoft Corporation. All rights reserved.

Trademarks:
MicrosoftR is a registered trademark of Microsoft Corporation. Windows(TM) is a trademark of Microsoft Corporation

Original file name:
IMJPMIG.EXE

File type:
Executable application (Win32 EXE)

Language:
Japanese

Common path:
C:\windows\ime\imjp8_1\imjpmig.exe

File PE Metadata
Compilation timestamp:
10/29/2003 7:41:16 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x1B765

Entry point:
F7, C0, 08, D2, DB, C1, C7, C5, 9B, A7, 26, D0, C6, C0, DB, 85, EA, 8D, 2D, 07, F9, 48, 7C, 14, 1B, 01, DF, 81, FA, 3E, 23, 00, 00, 78, 04, 32, F8, 86, ED, 8B, EF, 81, C6, F0, 9E, 00, 00, BF, 12, DC, 3C, FE, 87, DD, 0F, AF, EF, 81, EE, 4D, 00, 00, 00, 81, FB, ED, 5E, 00, 00, 74, 05, 8B, DB, C6, C0, 03, 8A, FA, 02, EB, 8A, F8, 34, 88, 87, DA, BE, 79, 8F, 8E, 43, 69, FB, 48, AA, E6, 0F, 8D, 15, 42, C8, E2, 5B, E8, 00, 00, 00, 00, 5B, F2, 50, 51, 05, F9, DC, FB, 77, F6, C6, F3, 86, D6, FE, C6, 0F, AF, F8, 4F...
 
[+]

Entropy:
6.7280

Code size:
144 KB (147,456 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
IMJPMIG8.1

Command:
"C:\windows\ime\imjp8_1\imjpmig.exe" \spoil \remadvdef \migration32


Scan IMJPMIG.EXE - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.