C:\workspace_win\JLvpn_win_33\installer2\obj\Release\jlvpn_installer.pdb
Static task
static1
Behavioral task
behavioral1
Sample
jlvpn_installer.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
jlvpn_installer.exe
Resource
win10v2004-20240802-en
General
-
Target
a869e9dd50e60ae4a8f292489345c0e3a980a647c4ba6ff4bf220787f0b5a54c
-
Size
46KB
-
MD5
271a596a67a817d640a60bb257d4686a
-
SHA1
ef3ecb764b6829027cd6b0f07b2a5e08fa36dbfa
-
SHA256
a869e9dd50e60ae4a8f292489345c0e3a980a647c4ba6ff4bf220787f0b5a54c
-
SHA512
18d2107b11b4cc5b2b3538c2301c3b4707d76d5b3e4fd9a4640389c2a9936bff6408aea244e356e6c91ba95fbf13b4e0fb62ba20bdbe43883c06bddf21635942
-
SSDEEP
768:Z72EmeUhUIpKpONcX2VluvmU1PJn6Dnpn/MaNRIgu4t2hXv0sYjgwDKWnQI0LCCv:Z6UzpyImoPJnun/MaBu4t2JkjA5I0LBv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/jlvpn_installer.exe
Files
-
a869e9dd50e60ae4a8f292489345c0e3a980a647c4ba6ff4bf220787f0b5a54c.zip
-
jlvpn_installer.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 149KB - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 105KB - Virtual size: 104KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ