home

mj3dupdatepath.exe

Addwe Big2UpdatePath

Addwe Technology Co., LTD.

Publisher:
Addwe Technology Copyright (C) 2007  (signed by Addwe Technology Co., LTD.)

Product:
Addwe Big2UpdatePath

Description:
Big2UpdatePath

Version:
1, 0, 0, 2

MD5:
01b63647eebc9e814b54512d6397d3a9

SHA-1:
ca2c9b6910651dc5c9d0107bd5147d9ba83b9f05

SHA-256:
0ae7b6bfdc193f42993854f5378fb3ef1101ba7bdb4f25ca626c8c9e1c452c92

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/7/2024 6:35:33 AM UTC  (today)

File size:
890.6 KB (912,016 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright c 2009

Original file name:
Big2UpdatePath.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\mg3gmj\mj3dupdatepath.exe

Digital Signature
Signed by:
Addwe Technology Co., LTD.

Authority:
GlobalSign nv-sa

Valid from:
5/2/2013 4:09:30 PM

Valid to:
5/2/2016 4:09:30 PM

Subject:
CN="Addwe Technology Co., LTD.", OU=Addwe IT Dept, O="Addwe Technology Co., LTD.", L=Taipei, S=Taiwan, C=TW

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112117002DE74F83F28AC7DF0781853EC259

File PE Metadata
Compilation timestamp:
11/15/2010 2:03:24 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:bSrFCGil5VqZs/CU1Uj0F0bxNuwOrTUkbhgV:b/V/CU1CQkXMTUkVgV

Entry address:
0x3BD70

Entry point:
55, 8B, EC, 6A, FF, 68, C8, C0, 4A, 00, 68, 98, 1B, 44, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, C4, A4, 53, 56, 57, 89, 65, E8, FF, 15, 80, F8, 4B, 00, A3, 40, CC, 4B, 00, A1, 40, CC, 4B, 00, C1, E8, 08, 25, FF, 00, 00, 00, A3, 4C, CC, 4B, 00, 8B, 0D, 40, CC, 4B, 00, 81, E1, FF, 00, 00, 00, 89, 0D, 48, CC, 4B, 00, 8B, 15, 48, CC, 4B, 00, C1, E2, 08, 03, 15, 4C, CC, 4B, 00, 89, 15, 44, CC, 4B, 00, A1, 40, CC, 4B, 00, C1, E8, 10, 25, FF, FF, 00, 00, A3, 40, CC, 4B, 00, 6A, 00, E8, FD...
 
[+]

Entropy:
4.8707

Developed / compiled with:
Microsoft Visual C++

Code size:
672 KB (688,128 bytes)

The file mj3dupdatepath.exe has been seen being distributed by the following URL.

http://update1.betcity.com.tw/patch/mg3gmj/.../MJ3DUpdatePath.exe

Scan mj3dupdatepath.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.