jsfp.pdb
Static task
static1
Behavioral task
behavioral1
Sample
d3fe532dd98ebd8732a11a78ae670a6ebfba1702c1a36c26aa9aa22a799d8f02.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d3fe532dd98ebd8732a11a78ae670a6ebfba1702c1a36c26aa9aa22a799d8f02.exe
Resource
win10v2004-20240226-en
General
-
Target
d3fe532dd98ebd8732a11a78ae670a6ebfba1702c1a36c26aa9aa22a799d8f02.exe
-
Size
611KB
-
MD5
01b64d37e2fe6e0748e9ec1f1ffd12f4
-
SHA1
c0374e1ea19ef7366054a5eded3eb0177fb800a1
-
SHA256
d3fe532dd98ebd8732a11a78ae670a6ebfba1702c1a36c26aa9aa22a799d8f02
-
SHA512
0391c85c38c23665d3676535c2c84d7f116d3b7ebe9240bd53356aea056e0bda9dd0d29700ffbe031c18ba79952a2142a3f578407c1a5f90b4cee7439cb3fd21
-
SSDEEP
12288:yof4wQnQeLKKH+O0ptkYPFwZgafoNIMRt1Qe1WWFfa5W:wwQn7OKHL0Xk4wUN1R7QZmF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource d3fe532dd98ebd8732a11a78ae670a6ebfba1702c1a36c26aa9aa22a799d8f02.exe
Files
-
d3fe532dd98ebd8732a11a78ae670a6ebfba1702c1a36c26aa9aa22a799d8f02.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 609KB - Virtual size: 608KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ