» jjgmudchk.exe
Overview
Analysis
File Details
Behaviors (1)

jjgmudchk.exe

Mediaclick

The application jjgmudchk.exe by Mediaclick has been detected as adware by 17 anti-malware scanners. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘jjgmudchk’.

File name:

jjgmudchk.exe

Publisher:

Mediaclick (signed and verified)

MD5:

38cdbfb157bf33128900a3b08ca8c976

SHA-1:

9ce795cfe5a7cea1748fabb62c6eaa6c15073ee4

SHA-256:

62e37bd91417bf68cefb8e654a7d1cb969ea333dccb457a5c5854ea12404a3a3

Scanner detections:

17 / 68

Status:

Adware

Analysis date:

7/8/2025 6:47:38 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Downloader-EDK [PUP]

2014.9-141009

AVG

MClick

2015.0.3326

Baidu Antivirus

AdWare.Win32.EasyPoint

4.0.3.14109

Bkav FE

W32.Clodb37.Trojan

1.3.0.4959

Comodo Security

Heur.Suspicious

19659

ESET NOD32

Win32/Adware.EasyPoint (variant)

8.10490

Fortinet FortiGate

Riskware/EasyPoint

10/9/2014

McAfee

Artemis!38CDBFB157BF

5600.6982

NANO AntiVirus

Trojan.Win32.EasyPoint.ctyqtm

0.28.2.62440

Norman

Malware

11.20141009

Reason Heuristics

PUP.Startup.Mediaclick

15.3.1.12

Rising Antivirus

PE:Trojan.Win32.Generic.1573D795!359913365

23.00.65.141007

Trend Micro House Call

ADW_KRADDARE

7.2.282

Trend Micro

ADW_KRADDARE

10.465.09

Vba32 AntiVirus

suspected of Trojan.Downloader.gen.h

3.12.26.3

VIPRE Antivirus

Trojan.Win32.Generic

33558

XVirus List

Win32.Detected

2.10.9

File size:

84.7 KB (86,752 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\jjanggame\jjgmudchk.exe

Digital Signature

Signed by:

Mediaclick

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

1/31/2008 2:39:21 PM

Valid to:

1/30/2009 2:39:21 PM

Subject:

CN=Mediaclick, OU=Software Development Department, O=Mediaclick, L=Gangnam-gu, S=Seoul, C=KR

Issuer:

CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

10DCB8E8E4CCBA8287CA3E7D2CAB6B80

File PE Metadata

Compilation timestamp:

5/3/2008 12:42:20 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

768:z4WPio8bNi4op41PH3/SrvFoelTxNPvUnpSenSdIqjJwNRNCmPDvqNhC+t1ZQl1W:r0DyrvaelTc5SaqjJwrNCmjqd8lp5+d

Entry address:

0x6C32

Entry point:

55, 8B, EC, 6A, FF, 68, D0, E7, 40, 00, 68, 80, 91, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 1C, E1, 40, 00, 33, D2, 8A, D4, 89, 15, CC, C7, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, C8, C7, 41, 00, C1, E1, 08, 03, CA, 89, 0D, C4, C7, 41, 00, C1, E8, 10, A3, C0, C7, 41, 00, 33, F6, 56, E8, E2, 25, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, EE, 3D, 00, 00, FF, 15, 18, E1, 40, 00, A3, 04, DE, 41, 00, E8... 
[+]

Entropy:

5.8204

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

52 KB (53,248 bytes)

Startup File (User Run)

Registry location:

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:

jjgmudchk

Command:

"C:\Program Files\jjanggame\jjgmudchk.exe" \start

Remove jjgmudchk.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.