home

wjpap.exe

Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.

Publisher:
无极影音  (signed by Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.)

Product:
无极影音

Description:
影音加速

Version:
1.0.0.0

MD5:
3a7400f3842053afb3cceb19656ff15f

SHA-1:
0c5b826b3c4d352fdda8e7b50191524d467ff976

SHA-256:
d7c75f920c0c4ac332c9f23d3fa9089ee4a21f02bec7cde21fff4b2cbe8c941a

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/10/2024 11:36:28 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

AhnLab V3 Security
Win-Trojan/Malpacked5.Gen
2014.02.04

Dr.Web
STPAGE.Trojan
9.0.1.0242

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.14828

File size:
766.3 KB (784,696 bytes)

Product version:
1.0.0.0

Copyright:
Copyright (C) 2013

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\wuji\170578\wjpap.exe

Digital Signature
Signed by:
Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.

Authority:
WoSign eCommerce Services Limited

Valid from:
6/2/2013 10:58:04 PM

Valid to:
7/6/2014 9:14:35 AM

Subject:
E=kefu@shengtaian.com, CN="Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.", O="Guangxi Nanning Shengtaian E-commerce Development Co., Ltd.", L=Nanning, S=Guangxi Zhuangzu Zizhiqu, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign eCommerce Services Limited, C=CN

Serial number:
039E5E3EE7A9AB

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:HPPZjgzlp/kRydUR6Z1EXg2ZssgCntgiSQhqHBTMCdr/CmFUJwWdNkXrPpX:HPBjgzv8RkOg20itgIqBTM2vFUJDdNYt

Entry address:
0x146595

Entry point:
68, 45, FD, 47, 40, E8, 7D, 62, 0A, 00, 8A, 16, 9C, 60, C0, CA, 07, 9C, E8, 74, DF, 09, 00, 00, 00, 53, 65, 6E, 64, 4D, 65, 73, 73, 61, 67, 65, 41, 00, 00, 00, 43, 68, 65, 63, 6B, 4D, 65, 6E, 75, 49, 74, 65, 6D, 00, 98, 59, 6E, D5, 34, BE, 37, 1B, C1, B3, A2, 76, 7D, 61, 0D, 1F, 53, 5F, 48, 77, C8, 12, 89, AF, 8D, B3, A1, C7, 04, A1, 06, 63, 06, 02, 25, 26, ED, EC, 6F, F8, AD, 50, A0, 9A, 1F, 9D, B2, CD, 05, AE, 9A, 83, B1, 51, 81, 80, EF, 15, 18, D8, 36, 83, BD, 59, 18, 41, 0D, 0A, 12, 2C, C1, 9A, 1E, 32...
 
[+]

Entropy:
7.9114  (probably packed)

Code size:
1.9 MB (2,015,232 bytes)

Scan wjpap.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.