home

JJangQUp.exe

짱큐 업로드

TGSM Inc.

The application JJangQUp.exe by TGSM has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
TGSM  (signed by TGSM Inc.)

Product:
짱큐 업로드

Version:
2010.01.21.1

MD5:
5092fca07d7514b48f8a4bb744dabf7e

SHA-1:
1f4d37b6c6f51cac9bf301587b72d60d5e5b7af8

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/23/2024 7:36:14 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.OpenShopper (M)
17.3.10.16

File size:
3 MB (3,153,952 bytes)

Product version:
2010.01.21.1

Copyright:
TGSM. All rights reserved.

Original file name:
JJangQUp.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\jjangq\jjangqup.exe

Digital Signature
Signed by:
TGSM Inc.

Authority:
Thawte, Inc.

Valid from:
3/18/2013 9:00:00 AM

Valid to:
5/18/2014 8:59:59 AM

Subject:
CN=TGSM Inc., OU=EC Team, O=TGSM Inc., L=Haeundae-gu, S=Busan, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
7D8725772359BB44707B7E208AE915C2

File PE Metadata
Compilation timestamp:
7/26/2013 2:17:24 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x8F288

Entry point:
E8, 66, F4, 00, 00, E9, 78, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 8A, 96, FF, FF, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 74, 96, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, C0, D4, 4D, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D...
 
[+]

Entropy:
5.1872

Code size:
702 KB (718,848 bytes)

Remove JJangQUp.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.