LAUNCHER JHONNET_protected[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

LAUNCHER JHONNET_protected.exe
Size

39.2MB
MD5

6dc7b467a334370b4290ea2478444e47
SHA1

84c3493dfa1a5370f86131a0e0bffd7270a93ff5
SHA256

eb18b4414fc56ec1746dbce24470056cc9cc40a58fd14a52cbbf8042d8840a2e
SHA512

b085942b1a767233444956297e0272a2986ece566835cfe9fac13dfbc382c52b869444d9c74ffb6a53ef8a86c88a2017b77ab4dba2a5c94d45adc92b74b0c854
SSDEEP

786432:C15p6H8+7je7qpzmlTAEdWgRH6LJ06xwASI7gzvj0w2+U+:CyHnje7BhAEP0hwASI7Wvj0hE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
LAUNCHER JHONNET_protected.exe

Files

LAUNCHER JHONNET_protected.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

DotNetRuntimeDebugHeader

Sections

Size: 392KB - Virtual size: 1023KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 9.6MB - Virtual size: 26.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 21.5MB - Virtual size: 45.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 528KB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1.2MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 139B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 163KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.exports
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BK
Size: - Virtual size: 9.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 5.7MB - Virtual size: 5.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 392KB - Virtual size: 1023KB

Size: 9.6MB - Virtual size: 26.2MB

Size: 21.5MB - Virtual size: 45.7MB

Size: 528KB - Virtual size: 3.0MB

Size: 1.2MB - Virtual size: 2.1MB

Size: 139B - Virtual size: 252B

Size: 52KB - Virtual size: 52KB

Size: 163KB - Virtual size: 1.2MB

.exports Size: 512B - Virtual size: 4KB

.imports Size: 1024B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.rsrc Size: 52KB - Virtual size: 52KB

BK Size: - Virtual size: 9.2MB

.boot Size: 5.7MB - Virtual size: 5.7MB

.reloc Size: 16B - Virtual size: 4KB

.exports
Size: 512B - Virtual size: 4KB

.imports
Size: 1024B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.rsrc
Size: 52KB - Virtual size: 52KB

BK
Size: - Virtual size: 9.2MB

.boot
Size: 5.7MB - Virtual size: 5.7MB

.reloc
Size: 16B - Virtual size: 4KB