JavaScriptCollectionAgent.pdb
Static task
static1
Behavioral task
behavioral1
Sample
JavaScriptCollectionAgent.dll
Resource
win10v2004-20240426-en
General
-
Target
JavaScriptCollectionAgent.dll
-
Size
75KB
-
MD5
cc37ef84864b8e0a7eadde0427f5049d
-
SHA1
73d3798a54f3148459614a68b2fa8e8787910101
-
SHA256
909a16bbd82d83d890e1c5cc4545e4408e934ef52b5e536dc0a496b0f1241c5e
-
SHA512
eb60c05d4ea83100fc8890dd939671f4d25294391063839eb2e1eb6cb7284fcb7aad89692f61b16a845e9057265d05df344eceffdf8b67f621ef37591a826db0
-
SSDEEP
1536:zKvQ1aNuMmq4/A6eR6r5LM7hZlvq+wS0xqV8HHZ:zAQ1aNunqGA6eRUM7LJwS0MV8H5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource JavaScriptCollectionAgent.dll
Files
-
JavaScriptCollectionAgent.dll.dll windows:10 windows x86 arch:x86
9f84bcb17ab0366d609f95f76ee5a2b9
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
msvcrt
_amsg_exit
_XcptFilter
memcpy
__CxxFrameHandler3
_CxxThrowException
?what@exception@@UBEPBDXZ
??1exception@@UAE@XZ
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@ABQBDH@Z
??0exception@@QAE@ABQBD@Z
_callnewh
__dllonexit
wcscpy_s
memset
_unlock
wcsncmp
memmove
_ui64tow_s
wcstod
vswprintf_s
_vscwprintf
_wtoi
malloc
_purecall
free
memcpy_s
wcsnlen
??3@YAXPAX@Z
_lock
??1type_info@@UAE@XZ
_initterm
_onexit
_errno
realloc
_ftol2
memmove_s
_except_handler4_common
memcmp
kernel32
HeapCreate
TerminateProcess
OutputDebugStringA
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
RaiseException
InitializeCriticalSection
QueryPerformanceCounter
GetLastError
QueryPerformanceFrequency
HeapDestroy
CloseHandle
K32GetProcessMemoryInfo
OpenProcess
SizeofResource
LockResource
LoadResource
FindResourceExW
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
GetProcessHeap
Sleep
user32
UnregisterClassA
ole32
CoTaskMemAlloc
CoCreateInstance
oleaut32
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysAllocString
SysAllocStringLen
tdh
TdhGetPropertySize
TdhGetProperty
Exports
Exports
DllCanUnloadNow
DllGetClassObject
Sections
.text Size: 63KB - Virtual size: 63KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ