Information about JFM.exe
- File Details
- Overview
- Analysis
JFM.exe
File Details
| Company Name: |
|
| MD5: |
b22c5a7a508438867b72f93c0faffe9c |
| Size: |
771 KB |
| First Published: |
2018-07-14 10:06:36 (6 years ago) |
| Latest Published: |
2024-01-25 23:05:34 (a year ago) |
| Status: |
Undefined (on last analysis) |
|
| Analysis Date: |
2024-01-25 23:05:34 (a year ago) |
Overview
| Signed By: |
Qiwang Computer |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %sysdrive%\sandisk64\security\portable - final uninstaller 2.5.4.449 |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %sysdrive%\wvista (64)\wvista [64]\program files (x86) |
| %programfiles% |
| %programfiles% |
| %profile%\onedrive\desktop |
|
20.0% |
|
|
15.0% |
|
|
15.0% |
|
|
10.0% |
|
|
10.0% |
|
|
5.0% |
|
|
5.0% |
|
|
5.0% |
|
|
5.0% |
|
|
5.0% |
|
|
5.0% |
|
| Windows 10 |
65.0% |
|
| Windows 7 |
20.0% |
|
| Windows 8.1 |
10.0% |
|
| Windows 8 |
5.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0006dfcc |
| Name |
Size of data |
MD5 |
| CODE |
446976 |
00cec5fa4fb9de295b4a9796e3a6c535 |
| DATA |
7168 |
788ec7ffce69773dd006983d50537c3a |
| BSS |
0 |
00000000000000000000000000000000 |
| .idata |
9216 |
690ce06ac064fb6dce0b0bf6556dbf09 |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
3f666d5653b6c75bb88a2e72df062bb7 |
| .reloc |
33280 |
3be52a9d39d1505a907e6c3cb7bc0268 |
| .rsrc |
286720 |
59be8a1745b9a0261467a0438a38a9a3 |
