jQoj.pdb
Static task
static1
Behavioral task
behavioral1
Sample
33ee6e3da72d9525bf52588ce45c2d95707066f89936b402d1e1d1e33d96ee99.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
33ee6e3da72d9525bf52588ce45c2d95707066f89936b402d1e1d1e33d96ee99.exe
Resource
win10v2004-20240226-en
General
-
Target
33ee6e3da72d9525bf52588ce45c2d95707066f89936b402d1e1d1e33d96ee99.exe
-
Size
1.1MB
-
MD5
345830556ac7704d8ba8bb4a378df217
-
SHA1
0c0a9bc709cdf151f4b5b782b419b5652840b40f
-
SHA256
33ee6e3da72d9525bf52588ce45c2d95707066f89936b402d1e1d1e33d96ee99
-
SHA512
232a4210d895ec26fe698cd0d336f309cc9e44e19b6ed92c6f036a939663154c578c3f5ee7eb64129e4f33ea789b68ff94977f23f2003a5afee824662c163f79
-
SSDEEP
24576:wqM0sEMgtARQa91iTyooCFlxbGZ+87wY+if9fYGlG:wqlsEMgGQa91iTyiFx+z9fYYG
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 33ee6e3da72d9525bf52588ce45c2d95707066f89936b402d1e1d1e33d96ee99.exe
Files
-
33ee6e3da72d9525bf52588ce45c2d95707066f89936b402d1e1d1e33d96ee99.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ