Jsh2L2erLulfKPd[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Jsh2L2erLulfKPd.exe
Size

653KB
MD5

7979a872abd32436b4df0250f5ae8822
SHA1

ff72bcf0be2a24435f5fad9d61ed1da2ebaf0bc4
SHA256

def1c893697505de0b722e6fb3e516bad1c37f8e19599920714d29861639c274
SHA512

22c5b78909457857a6e4a25a2c47687f671de3c1f8d120cf5ff25a6b09b0aa6e594e32b7e4396fbe3418112efdda549829e68291a27ec03e0a375cdc6c89827a
SSDEEP

12288:8Y9IMilOcvq3iTx4UwH4rf3F8VY4tuxxrqTa4h5R4drCv1g2t4dyy:JSsH4rV8VDQxZc+drCvTi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Jsh2L2erLulfKPd.exe

Files

Jsh2L2erLulfKPd.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 650KB - Virtual size: 650KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ