jsjsjs[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

jsjsjs.exe
Size

40.0MB
MD5

61396b7b659aa8ceeb1b05c29b2881bd
SHA1

b178d08c9e5faa7e91d205a339819e68085e02c7
SHA256

fc31e06bd69e0573be4a0b06631c798e78b826a71886fe5eddaee95994846512
SHA512

b19ed2ccba61454b69b28797a1d6d8abba79620e097d795c417051c38b78868b33b783d4707d0c417c856f17f4ba6aa8bb99fe4b2a5c1ee6a13f400fc3344333
SSDEEP

12288:x8h99oPo4jxUzUTnHD8AOCmYYeItT4+/ulK2M6indEkD9c3h0:WX9og4jIKnHD8AOCm1VtTSK2MNdh9cx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
jsjsjs.exe

Files

jsjsjs.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

gtWg.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 901KB - Virtual size: 900KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ