× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: eeae27879e207edb4b94aae6ed1ee5cef4aee9c5daa9a35696110e4d0e94f735
File name: Java(TM) Update Scheduler
Detection ratio: 50 / 69
Analysis date: 2018-10-04 15:37:59 UTC ( 5 months, 3 weeks ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Zusy.82257 20181004
AegisLab Trojan.Win32.Agent.4!c 20181004
AhnLab-V3 Trojan/Win32.Jackpos.R111286 20181004
ALYac Gen:Variant.Zusy.82257 20181004
Antiy-AVL Trojan/Win32.SGeneric 20181004
Arcabit Trojan.Zusy.D14151 20181004
Avast Win32:Malware-gen 20181004
AVG Win32:Malware-gen 20181004
Avira (no cloud) HEUR/AGEN.1022299 20181004
AVware Trojan.Win32.Generic!BT 20180925
BitDefender Gen:Variant.Zusy.82257 20181004
ClamAV Win.Malware.Jinupd-5 20181004
CrowdStrike Falcon (ML) malicious_confidence_60% (D) 20180723
Cybereason malicious.974799 20180225
Cylance Unsafe 20181004
DrWeb Trojan.DownLoader9.22886 20181004
Emsisoft Gen:Variant.Zusy.82257 (B) 20181004
Endgame malicious (high confidence) 20180730
ESET-NOD32 a variant of Win32/Jinupd.B 20181004
F-Secure Gen:Variant.Zusy.82257 20181004
Fortinet W32/Jinupd.B!tr 20181004
GData Gen:Variant.Zusy.82257 20181004
Ikarus Trojan.Win32.Jinupd 20181004
Jiangmin Trojan/Generic.bjjdl 20181004
K7AntiVirus Trojan ( 004ce5771 ) 20181004
K7GW Trojan ( 004ce5771 ) 20181003
Kaspersky Trojan.Win32.Agent.idxf 20181004
Malwarebytes Trojan.Dropper.JPOS 20181004
MAX malware (ai score=100) 20181004
McAfee PWS-FBKG!D073F4E97479 20181004
McAfee-GW-Edition BehavesLike.Win32.Multiplug.fh 20181004
Microsoft Trojan:Win32/Jinupd.B 20181004
eScan Gen:Variant.Zusy.82257 20181004
NANO-Antivirus Trojan.Win32.Agent.dogoul 20181004
Palo Alto Networks (Known Signatures) generic.ml 20181004
Panda Trj/Genetic.gen 20181004
Qihoo-360 Win32/Trojan.c08 20181004
Rising Trojan.Jinupd!8.4C6 (CLOUD) 20181004
Sophos AV Troj/Trackr-AB 20181004
SUPERAntiSpyware Trojan.Agent/Gen-Jornup 20180907
Symantec Trojan.Gen.2 20181004
Tencent Win32.Trojan.Agent.Wozb 20181004
TheHacker Trojan/Jinupd.b 20181001
TrendMicro BKDR_JACKPOS.SM 20181004
TrendMicro-HouseCall BKDR_JACKPOS.SM 20181004
VBA32 Trojan.Agent 20181004
VIPRE Trojan.Win32.Generic!BT 20181004
Webroot W32.Sality.Gen 20181004
Yandex Trojan.Jinupd! 20181004
ZoneAlarm by Check Point Trojan.Win32.Agent.idxf 20180925
Alibaba 20180921
Avast-Mobile 20181004
Babable 20180918
Baidu 20180930
Bkav 20181003
CAT-QuickHeal 20181004
CMC 20181004
Comodo 20181004
Cyren 20181004
eGambit 20181004
F-Prot 20181004
Sophos ML 20180717
Kingsoft 20181004
SentinelOne (Static ML) 20180926
Symantec Mobile Insight 20181001
TACHYON 20181004
TotalDefense 20181004
Trustlook 20181004
ViRobot 20181004
Zillya 20181003
Zoner 20181004
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2004

Product Java(TM) Platform SE 6 U10
Original name jusched.exe
Internal name Java(TM) Update Scheduler
File version 6.0.100.33
Description Java(TM) Platform SE binary
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-10-15 00:00:17
Entry Point 0x0001080D
Number of sections 5
PE sections
PE imports
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
GetAdaptersInfo
GetStdHandle
EncodePointer
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetCPInfo
GetTempPathW
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
IsWow64Process
OutputDebugStringW
FindClose
TlsGetValue
SetFileAttributesW
SetLastError
InterlockedDecrement
CopyFileW
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetModuleFileNameA
GetPriorityClass
EnumSystemLocalesW
LoadLibraryExW
MultiByteToWideChar
SetFilePointerEx
CreateThread
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
DecodePointer
TerminateProcess
GetModuleHandleExW
VirtualQueryEx
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
CreateToolhelp32Snapshot
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
LoadLibraryW
GetOEMCP
QueryPerformanceCounter
TlsAlloc
FlushFileBuffers
RtlUnwind
OpenProcess
GetStartupInfoW
ReadProcessMemory
CreateDirectoryW
DeleteFileW
GetUserDefaultLCID
GetProcessHeap
FindNextFileW
FindFirstFileW
IsValidLocale
GetProcAddress
ReadConsoleW
CreateFileW
GetFileType
TlsSetValue
ExitProcess
LeaveCriticalSection
GetLastError
LCMapStringW
GetConsoleCP
GetEnvironmentStringsW
Process32NextW
GetCurrentProcessId
GetCommandLineW
WideCharToMultiByte
HeapSize
Process32FirstW
RaiseException
TlsFree
SetFilePointer
ReadFile
CloseHandle
GetACP
GetModuleHandleW
IsValidCodePage
WriteFile
Sleep
SHGetSpecialFolderPathW
ShellExecuteW
InternetConnectW
InternetReadFile
InternetCloseHandle
InternetSetOptionW
HttpSendRequestW
InternetOpenUrlW
InternetOpenW
HttpOpenRequestW
Number of PE resources by type
RT_RCDATA 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 3
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.1

InitializedDataSize
232448

ImageVersion
0.0

ProductName
Java(TM) Platform SE 6 U10

FileVersionNumber
6.0.100.33

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

LinkerVersion
11.0

FileTypeExtension
exe

OriginalFileName
jusched.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
6.0.100.33

TimeStamp
2013:10:15 01:00:17+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Java(TM) Update Scheduler

ProductVersion
6.0.100.33

FileDescription
Java(TM) Platform SE binary

OSVersion
5.1

FileOS
Windows NT 32-bit

LegalCopyright
Copyright 2004

MachineType
Intel 386 or later, and compatibles

CompanyName
Sun Microsystems, Inc.

CodeSize
157184

FileSubtype
0

ProductVersionNumber
6.0.100.33

EntryPoint
0x1080d

ObjectFileType
Executable application

File identification
MD5 d073f4e97479983891d5bb9ff6688f7a
SHA1 ccb42461b68b872add6d0f9fdc41355ae1c76937
SHA256 eeae27879e207edb4b94aae6ed1ee5cef4aee9c5daa9a35696110e4d0e94f735
ssdeep
6144:q8vQjxTsKTJpYkIF5k4RKJicS5ALE8UvMifbp6:GjxtVpYkIXUIcS5Aw8U5p6

authentihash 6e40275441d5934c0b4467e895dd471967f7de886ff5ef11bf090012c10c23f9
imphash 1a400780c46c6c25978ac62eb5f7a6f7
File size 373.0 KB ( 381952 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (41.0%)
Win64 Executable (generic) (36.3%)
Win32 Dynamic Link Library (generic) (8.6%)
Win32 Executable (generic) (5.9%)
OS/2 Executable (generic) (2.6%)
Tags
peexe

VirusTotal metadata
First submission 2014-02-06 22:40:59 UTC ( 5 years, 1 month ago )
Last submission 2017-12-14 04:43:49 UTC ( 1 year, 3 months ago )
File names 20175871
output.20175871.txt
12013101503175215806185.exe9779.exe
1485515448_207867_4_0a0008d4_36782_b9385082_80.2
eeae27879e207edb4b94aae6ed1ee5cef4aee9c5daa9a35696110e4d0e94f735
Java(TM) Update Scheduler
12013101503175215806185.exe9779.exe
file-6570578_exe
d073f4e97479983891d5bb9ff6688f7a
d073f4e97479983891d5bb9ff6688f7a.bin
55f8509bba589bd623129b7acb341b23f9ebb759
42583101503287.exe
D073F4E97479983891D5BB9FF6688F7A.exe
output.112503528.txt
d073f4e97479983891d5bb9ff6688f7a
d073f4e97479983891d5bb9ff6688f7a
1201310150317521926.exe
jusched.exe
1201310150317521926.exe
d073f4e97479983891d5bb9ff6688f7a.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!