JJSploit_8.6.0_x64-setup.exe?ex=670ccbe7&is=670b7a67&hm=d53dd5960ada634306bc9c7c1ab192de1e5c0f74588d76741f8640cc5f1535e4&

First submission 2024-10-13 17:39:02

File details

File type:	PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
Mime type:	application/x-dosexec
File size:	6255.32 KB (6405445 bytes)
Compile time:	2021-09-25 23:56:47
MD5:	4b0af7286d36f64ffcb0e846946e6b76
SHA1:	7cb9523daac3d722bbc4272b0cd154564a909516
SHA256:	19372df10d7a069a9e4b74cde6b901332027cbc9f6322730e5e7c1cf5f0bbfb0
Import Hash :	61259b55b8912888e90f516ca08dc514
Sections 5	.text .rdata .data .ndata .rsrc
Directories 2	import resource

File features detected

Is DLL

Packers

Anti Debug

Anti VM

Signed

XOR

OSINT Enrichments

Virus Total:	21/77 VT report date: 2024-10-13 15:46:45
Malware Type 2	trojan pua
Threat Type 1	gamehack

URLs, FQDN and IP indicators 1

URL	Host (FQDN/IP)	Date Added
hXXps://cdn.discordapp.com/attachments/1294849288169324608/1294928780283871253/JJSploit_8.6.0_x64-setup.exe?ex=670ccbe7&is=670b7a67&hm=d53dd5960ada634306bc9c7c1ab192de1e5c0f74588d76741f8640cc5f1535e4&	cdn.discordapp.com	2024-10-13 17:39:03

PE Sections 1 suspicious

Name	VAddress	VSize	Size	SHA1	MD5
.text	0x1000	0x6676	26624	55517dc6ad93689679677d152abfdd1ce20f1135	6f5abe9eeda26ee84b3c1ed1a6c82001
.rdata	0x8000	0x139a	5120	dc4f14d019cad6646b38852dfb7370532acafebc	8c5edfd8ff9cc0135e197611be38ca18
.data	0xa000	0x20378	1536	f45486287d474fdcafc99c24e37c4eb61bf613b3	4b2421975c21b032f7ea000f5e7f9fbf
.ndata	0x2b000	0x2c000	0	da39a3ee5e6b4b0d3255bfef95601890afd80709	d41d8cd98f00b204e9800998ecf8427e
.rsrc	0x57000	0x4568	17920	c89177797c7756dffd3976f4ee66be6d2abb4a1d	ca487d0cf762b1566a2901d964ddfbe6

PE Resources 5

Name	Language	Sublanguage	Offset	Size	Data
RT_ICON	LANG_ENGLISH	SUBLANG_ENGLISH_US	0x5a808	296
RT_DIALOG	LANG_ENGLISH	SUBLANG_ENGLISH_US	0x5adf0	238
RT_GROUP_ICON	LANG_ENGLISH	SUBLANG_ENGLISH_US	0x5aee0	104
RT_VERSION	LANG_ENGLISH	SUBLANG_ENGLISH_US	0x5af48	504
RT_MANIFEST	LANG_ENGLISH	SUBLANG_ENGLISH_US	0x5b140	1059	PE Resource: RT_MANIFEST - Data <?xml version="1.0" encoding="UTF-8" standalone="yes"?><assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><assemblyIdentity version="1.0.0.0" processorArchitecture="" name="Nullsoft.NSIS.exehead" type="win32"/><description>Nullsoft Install System v3.08</description><dependency><dependentAssembly><assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0" processorArchitecture="" publicKeyToken="6595b64144ccf1df" language="*" /></dependentAssembly></dependency><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security><requestedPrivileges><requestedExecutionLevel level="asInvoker" uiAccess="false"/></requestedPrivileges></security></trustInfo><compatibility xmlns="urn:schemas-microsoft-com:compatibility.v1"><application><supportedOS Id="{8e0f7a12-bfb3-4fe8-b9a5-48fd50a15a9a}"/><supportedOS Id="{1f676c76-80e1-4239-95bb-83d0f6d0da78}"/><supportedOS Id="{4a2f28e3-53b9-4441-ba9c-d69d4a4a6e38}"/><supportedOS Id="{35138b9a-5d96-4fbd-8e2d-a2440225f93a}"/></application></compatibility></assembly>

Meta infos 6

LegalCopyright:
FileVersion:	8.6.0
FileDescription:	Ulitity for game enhancement
Translation:	0x0409 0x04b0
ProductName:	JJSploit
ProductVersion:	8.6.0

Anti debug functions 2

FindWindowExW
GetLastError

Strings analysis - File found

Library
%s%s.dll
ADVAPI32.dll
SHELL32.dll
KERNEL32.dll
COMCTL32.dll
USER32.dll
ole32.dll
GDI32.dll

Strings analysis - Possible URLs found 1

http://nsis.sf.net/NSIS_Error

Import functions

GDI32.dll 8 SHELL32.dll 6 KERNEL32.dll 65 ADVAPI32.dll 13 ole32.dll 5 USER32.dll 64 COMCTL32.dll 4

Function	Address	Souspicious	Anti Debug
SetBkMode	0x40804c
SetBkColor	0x408050
GetDeviceCaps	0x408054
CreateFontIndirectW	0x408058
CreateBrushIndirect	0x40805c
DeleteObject	0x408060
SetTextColor	0x408064
SelectObject	0x408068

Function	Address	Souspicious	Anti Debug
SHGetSpecialFolderLocation	0x408178
SHFileOperationW	0x40817c
SHBrowseForFolderW	0x408180
SHGetPathFromIDListW	0x408184
ShellExecuteExW	0x408188
SHGetFileInfoW	0x40818c

Function	Address	Souspicious	Anti Debug
GetExitCodeProcess	0x408070
WaitForSingleObject	0x408074
GetModuleHandleA	0x408078
GetProcAddress	0x40807c
GetSystemDirectoryW	0x408080
lstrcatW	0x408084
Sleep	0x408088
lstrcpyA	0x40808c
WriteFile	0x408090
GetTempFileNameW	0x408094
lstrcmpiA	0x408098
RemoveDirectoryW	0x40809c
CreateProcessW	0x4080a0
CreateDirectoryW	0x4080a4
GetLastError	0x4080a8
CreateThread	0x4080ac
GlobalLock	0x4080b0
GlobalUnlock	0x4080b4
GetDiskFreeSpaceW	0x4080b8
WideCharToMultiByte	0x4080bc
lstrcpynW	0x4080c0
lstrlenW	0x4080c4
SetErrorMode	0x4080c8
GetVersionExW	0x4080cc
GetCommandLineW	0x4080d0
GetTempPathW	0x4080d4
GetWindowsDirectoryW	0x4080d8
SetEnvironmentVariableW	0x4080dc
CopyFileW	0x4080e0
ExitProcess	0x4080e4
GetCurrentProcess	0x4080e8
GetModuleFileNameW	0x4080ec
GetFileSize	0x4080f0
CreateFileW	0x4080f4
GetTickCount	0x4080f8
MulDiv	0x4080fc
SetFileAttributesW	0x408100
GetFileAttributesW	0x408104
SetCurrentDirectoryW	0x408108
MoveFileW	0x40810c
GetFullPathNameW	0x408110
GetShortPathNameW	0x408114
SearchPathW	0x408118
CompareFileTime	0x40811c
SetFileTime	0x408120
CloseHandle	0x408124
lstrcmpiW	0x408128
lstrcmpW	0x40812c
ExpandEnvironmentStringsW	0x408130
GlobalFree	0x408134
GlobalAlloc	0x408138
GetModuleHandleW	0x40813c
LoadLibraryExW	0x408140
MoveFileExW	0x408144
FreeLibrary	0x408148
WritePrivateProfileStringW	0x40814c
GetPrivateProfileStringW	0x408150
lstrlenA	0x408154
MultiByteToWideChar	0x408158
ReadFile	0x40815c
SetFilePointer	0x408160
FindClose	0x408164
FindNextFileW	0x408168
FindFirstFileW	0x40816c
DeleteFileW	0x408170

Function	Address	Souspicious	Anti Debug
RegCreateKeyExW	0x408000
RegEnumKeyW	0x408004
RegQueryValueExW	0x408008
RegSetValueExW	0x40800c
RegCloseKey	0x408010
RegDeleteValueW	0x408014
RegDeleteKeyW	0x408018
AdjustTokenPrivileges	0x40801c
LookupPrivilegeValueW	0x408020
OpenProcessToken	0x408024
SetFileSecurityW	0x408028
RegOpenKeyExW	0x40802c
RegEnumValueW	0x408030

Function	Address	Souspicious	Anti Debug
OleInitialize	0x408298
OleUninitialize	0x40829c
CoCreateInstance	0x4082a0
IIDFromString	0x4082a4
CoTaskMemFree	0x4082a8

Function	Address	Souspicious	Anti Debug
GetClientRect	0x408194
EndPaint	0x408198
DrawTextW	0x40819c
IsWindowEnabled	0x4081a0
DispatchMessageW	0x4081a4
wsprintfA	0x4081a8
CharNextA	0x4081ac
CharPrevW	0x4081b0
MessageBoxIndirectW	0x4081b4
GetDlgItemTextW	0x4081b8
SetDlgItemTextW	0x4081bc
GetSystemMetrics	0x4081c0
FillRect	0x4081c4
AppendMenuW	0x4081c8
TrackPopupMenu	0x4081cc
OpenClipboard	0x4081d0
SetClipboardData	0x4081d4
CloseClipboard	0x4081d8
IsWindowVisible	0x4081dc
CallWindowProcW	0x4081e0
GetMessagePos	0x4081e4
CheckDlgButton	0x4081e8
LoadCursorW	0x4081ec
SetCursor	0x4081f0
GetSysColor	0x4081f4
SetWindowPos	0x4081f8
GetWindowLongW	0x4081fc
PeekMessageW	0x408200
SetClassLongW	0x408204
GetSystemMenu	0x408208
EnableMenuItem	0x40820c
GetWindowRect	0x408210
ScreenToClient	0x408214
EndDialog	0x408218
RegisterClassW	0x40821c
SystemParametersInfoW	0x408220
CreateWindowExW	0x408224
GetClassInfoW	0x408228
DialogBoxParamW	0x40822c
CharNextW	0x408230
ExitWindowsEx	0x408234
DestroyWindow	0x408238
CreateDialogParamW	0x40823c
SetTimer	0x408240
SetWindowTextW	0x408244
PostQuitMessage	0x408248
SetForegroundWindow	0x40824c
ShowWindow	0x408250
wsprintfW	0x408254
SendMessageTimeoutW	0x408258
FindWindowExW	0x40825c
IsWindow	0x408260
GetDlgItem	0x408264
SetWindowLongW	0x408268
LoadImageW	0x40826c
GetDC	0x408270
ReleaseDC	0x408274
EnableWindow	0x408278
InvalidateRect	0x40827c
SendMessageW	0x408280
DefWindowProcW	0x408284
BeginPaint	0x408288
EmptyClipboard	0x40828c
CreatePopupMenu	0x408290

Function	Address	Souspicious	Anti Debug
None	0x408038
ImageList_Create	0x40803c
ImageList_Destroy	0x408040
ImageList_AddMasked	0x408044

Name	Latest seen	MD5
b1.exe	2022-08-02 07:13:31	268e27279cffcb8765360a52bc44785f
a1.exe	2022-08-02 07:16:38	aa849555aeb4215ef866b999ec67824c
abc.exe	2022-08-04 23:29:05	13d3828002bbe548ed0b85321e15c72c
se.exe	2022-08-05 01:40:02	977f07ae0d305258efd0012996fc3b24
rgzx.exe	2023-01-06 11:24:02	a652aed282afc00d17c3fbacbfe9f022
jabor.exe	2023-01-06 21:35:03	94c7dc9f9d87abdcd8914c66caa72405
nike.exe	2023-01-09 13:55:02	0af45892f65ceb2742d78ddd64d5f8a3
po.exe	2023-01-09 16:06:03	8f12bb58ad6b31473da7fd0d18f42ee5
andyzx.exe	2023-01-10 04:00:03	f857735b668966b542097ff430592eb7
binkellyzx.exe	2023-01-10 20:33:01	5868b13243f0fbbdbb63957ff8f720e7
pop.exe	2023-01-11 09:01:04	b8e7ae607f308b3340bf122103b3c3ec
sherack.exe	2023-01-11 17:05:03	89207e12f1f61594121f8b2e0bb9ff24
shedor2.2.exe	2023-01-11 17:12:03	2f536c946929c16c71d83f6e7dda1747
maror.exe	2023-01-11 17:50:04	6154c78eb5f352168b53113d5508c3e6
shadnet2.2.exe	2023-01-12 15:38:02	6f8402fcbc97f14e5b3a933adb0c69af
water.exe	2023-01-12 17:14:01	8ccf35c53de65bbb15afc6cd06c00b4d
paw.exe	2023-01-12 17:15:02	b0fe9c50a06648b131a04d2972d3225e
gstallabt4.2.exe	2023-01-14 18:09:02	80158b31173f6e2bc97d5ad1fa9e365f
vbc.exe	2023-01-16 11:32:02	419d97afbdef4d3bbdfed37cf2522cc1
onyeshed2.1.exe	2023-01-16 16:13:03	278373101cd2d204770e3c8a364eab7f
vbc.exe	2023-01-16 20:20:02	21f218355048519cbfe30b197a9ed5bb
takerzx.exe	2023-01-17 15:47:02	64dbccb91c1ab796479716e3e1925961
vbc.exe	2023-01-18 21:26:03	9cbc533aff85bb22a0c012e58d2a1778
GIB.exe	2023-01-18 21:27:03	fcbf20665e1d447ad4f79c51c05c6d9c
vbc.exe	2023-01-19 09:21:03	58dbd12561b26a53ecf30b37a0c4060d
kasiezx.exe	2023-01-19 14:30:02	145eaa15c05545723048b6b09952627b
vbc.exe	2023-01-19 15:54:04	6bd25c680c1d1b4244d3a8a0905a2870
.svchost.exe	2023-01-20 02:35:04	7c4ab0f0055294917d27b229d507bd39
ohoyeczx.exe	2023-01-20 06:54:02	028b9c32108e23f5ab2504dc6a589fe8
shade2.1.exe	2023-01-22 12:03:05	37f6aa9e499c346e972f75d131ef890e
vbc.exe	2023-01-20 09:50:02	38aa7278760793557e4dcfcf1c8879d4
vbc.exe	2023-01-20 10:00:03	f40f44f01175541ccf44f0c9064487b4
.svchost.exe	2023-01-22 12:02:05	b076f82fbd3837c14d7d1587ce72d6a8
nekomu2.2.exe	2023-01-22 12:10:05	c1bd718fa5dc5b3e56f7a50448d58798
vbc.exe	2023-01-22 12:22:06	8c1cb5a9050ed3721793df739077619f
c4.exe	2023-01-23 20:22:06	d2dac4794ef6d00cdfaa25638ed72acd
crypt2.exe	2023-01-23 20:24:05	fe03f41b3e87963f7cd1fac67f53c46a
supply.exe	2023-01-23 20:25:06	d61f014a6e7e37b5a97043f9458234fe
vbc.exe	2023-01-23 20:26:04	86ecf018b7711d3a453ceeca71cdd7fe
vbc.exe	2023-01-24 13:35:02	cdcbca7a700fdee5246a10aef03525b7
nmnb.exe	2023-01-25 21:18:04	58a93d1d064b9e8265ea798531adb0bf
calc.exe	2023-01-25 21:19:03	9e6edbb8f896b118663cfa8c0e2e8849
vbc.exe	2023-01-25 22:02:04	78e04840b1afd0c966a7ddaee7b67b5e
file.exe	2023-01-25 22:04:08	70c2bfb3dd7b6467020e6ca5d7f037a3
monshedy2.2.exe	2023-01-26 05:59:03	01ff6e3e800d174e5d9a1b2b0b7ab5a0
monjedi2.5.exe	2023-01-26 05:56:03	3b8487e22ee5ce7c2549ee960c88e2ea
maxtop3.1.exe	2023-01-27 06:22:04	802b89e1cdf76e51b9f082a05c3eaf34
nala.exe	2023-01-27 06:06:02	c5edcf43ecc797a13c565d436c6a541c
ndiiche.exe	2023-01-27 10:39:03	f020e4ab9dacdc83e6b1a4537b5338bc
trt.exe	2023-01-27 12:38:02	8b37c8c2c2beefd373d98526c700109a
INV.exe	2023-01-27 16:35:02	f5ba8cd2153faf89a84faceabd8c8a50
sheifo2.1.exe	2023-01-30 13:58:03	0c723b29d0787a0e956131ee864d04ba
sheifo2.1.exe	2023-01-31 06:21:03	43056ad325dc432700151289c7135e81
sof.exe	2023-01-31 14:27:02	512fcd3048ecc3311759e82e00c9888d
vbc.exe	2023-01-31 19:22:02	3c201fc4355b967aefaae295cc6fa701
shekdrop4.1.exe	2023-02-01 16:38:03	ad4ffe7e9fc7e819cd483b5ea2e0513b
stanmac2.1.exe	2023-02-01 16:52:03	d3e933b0aab571bdc73355a106d657e0
vbc.exe	2023-02-01 16:56:01	2ee13ecd998734cd7fc80b882c7c3eab
aaaaa.exe	2023-02-07 10:19:04	a62b834fd42367f384b1a6a7250a3e9f
mad.exe	2023-02-02 08:23:03	f4d0c348ddb22b023bb20bfb273b2880
jollykeys2.1.exe	2023-02-02 08:24:05	f35c9fa6756cbc5e791367d675cd5791
shederct2.1.exe	2023-02-06 11:23:05	4a4bf19c9575372904fa2fc82e2d0487
javonet2.1.exe	2023-02-06 14:05:03	4c7df43e37814754ad1c8a97ab971af8
vbc.exe	2023-02-08 11:02:04	ecd901a84b82d00a82d45b4d0123352c
monday.exe	2023-02-07 10:07:02	bc0b06402e7d1c9137ddc147b44bb3f1
beau.exe	2023-02-07 10:08:03	c71d6374ee14811b90b888115a68ee38
lightsov2.1.exe	2023-02-07 10:15:04	b65bb32b79df8155ab362e98ce867bee
svc.exe	2023-02-07 15:54:03	a1c496c6f57e369cc592fce0ea75bd8a
foktdy.exe	2023-02-07 18:59:03	2b922b873ed0c24f4af842983486c8e3
shevome2.1.exe	2023-02-07 19:03:04	54315b77193020b244a0741d23c399e7
neovolt2.1.exe	2023-02-08 01:58:06	2c349b09e9328cfc98c0328099a73066
maya.exe	2023-02-08 02:38:03	edf2482324868bd3843ba4e73258493c
kroxxpop.exe	2023-02-08 02:53:06	5e3c0b08904d967d151047a51ca76cc1
hjf.exe	2023-02-08 19:55:04	b0dd3b97aaab029d1253cb0c3794d455
vbc.exe	2023-02-08 21:22:04	900820f261e82e5c51ecaa86f2f68f86
bobolak2.1.exe	2023-02-09 17:37:06	31ef7836de85721ee95454a48203312b
neuforn2.1.exe	2023-02-10 09:37:05	0d3ec9b2b95b32cc6c1746330ad5ec5e
macforn2.1.exe	2023-02-11 05:58:07	49da5a6d3c1c7f787cf15ef030062c81
roc51.exe	2023-02-11 13:22:05	1d920aa56457a163c9ede013081ae820
neowarz2.1.exe	2023-02-23 21:58:02	c60f1da307389c105e1aa8cb22992413
kentorio2.1.exe	2023-02-24 02:34:01	e2e8181de278ee914d06bd6cc3474dba
warzgo2.1.exe	2023-02-24 02:36:01	0269b81f75aa1101e557c3ebb49eb4c5
warex2.1.exe	2023-02-25 15:24:02	28c462381899d5a4f67656944b6025f9
vbc.exe	2023-02-25 20:29:02	84f8c0e114eaedf255b41eb10d7b58c3
vbc.exe	2023-03-05 14:28:20	c78b67929075be2f3b5c570bfc9dd81c
ketitan2.1.exe	2023-03-06 11:47:05	d556a2961d0abb6d9767e1017fd96245
metabolom4.1.exe	2023-03-07 03:16:06	f1d62ab9cbdb343e68cab2a34f839583
mantebo3.1.exe	2023-03-07 03:25:06	afb5586300e527b51e0553d9bb7ce40d
yam.exe	2023-03-13 05:59:03	961c9c4f65267e43e44e13b6bf265f6f
GIB.exe	2023-03-13 11:13:02	2ff3c88cc079f50ba0000d386f8f208f
wed.exe	2023-03-13 11:51:03	f90db90919147d8d78cd6bb75401cf45
vbc.exe	2023-03-13 13:45:03	9eea2c45522c0a0507344fc3b216f35e
monnn.exe	2023-03-13 15:50:02	bd7da39a826d40d755a686cfa5acb2c8
bollivo2.1.exe	2023-03-14 06:52:13	f5cf58e801342450519aa385f14027a3
gcoder.exe	2023-03-14 08:00:12	d927de8cecb8523b956d2bb2098d20ef
vbc.exe	2023-03-15 12:00:11	78bfa5db909ad9e080b957dd9acd4f6b
vbc.exe	2023-03-15 19:36:09	5fd4d5c90658e442b969384b80036b7b
parmashdy3.1.exe	2023-03-16 01:59:08	bdfb2c5a346d6684824b78499b36b88d
pankotro3.1.exe	2023-03-16 03:14:08	8c8ee58eacb110d5598f723ecd7e948c
vbc.exe	2023-03-16 03:19:07	e5e52fbd154bc8f2ac5bc61252c52055
sekontary2.1.exe	2023-03-16 05:40:08	f2e4e0ba9fc3fe9d2229c31c4a5a40d0
macsplin3.1.exe	2023-03-16 06:20:08	05ca94d88d462bef2458ec93ed42df23
vbc.exe	2023-03-18 05:52:04	badfd20331bbd073b8efe745d71b4797
vbc.exe	2023-03-20 12:30:04	7de990046a20e6666627273589b014a5
vbc.exe	2023-03-21 11:54:03	f751a273c61b7b0f58e92e5e28f08d1f
vbc.exe	2023-03-22 06:07:03	3a02d50415b4f76d02cda80340ecccbe
vbc.exe	2023-03-22 18:01:04	ca62a1b8f19765c9dab034741c463aed
rocheleb4.1.exe	2023-03-22 20:44:04	78a95a8cb18e37d6565520be5e8013c4
vbc.exe	2023-03-22 20:50:05	92be4d14e97f691d1a23454035deca30
INV.exe	2023-03-23 08:28:03	d826f8c8edb9b4eea8ee18fa75572490
vbc.exe	2023-03-23 10:32:05	e6e3d50ceb12663e01d4abf89cb62318
vbc.exe	2023-03-23 18:21:05	b9e1bfbf09491bfb164214ce2618acb7
FRI.exe	2023-03-24 10:46:06	c1b465d96c0541a5dc8e95a7bfd96e15
vbc.exe	2023-03-25 16:13:04	995da8fb50408f1c09b6b9929f3cad3a
vbc.exe	2023-03-25 16:14:04	ea36e1f335ddc3b518fb817b92b2f7e9
vbc.exe	2023-03-28 09:23:03	7c85964484c4e3471124dd4dd5ef34df
vbc.exe	2023-03-28 20:14:03	542ef4a811e2fa45e96efe1602acd737
vbc.exe	2023-03-28 11:42:03	fb4f4746d44d1ae472506334dacf6956
vbc.exe	2023-03-28 15:30:03	3d5458f26b59708a5d0da5567189aa41
vbc.exe	2023-03-29 08:59:03	4da41093eb4cce80c18d1e6a2391ba80
vbc.exe	2023-03-29 20:41:04	a98f0fd7f830e6c6514d4b8cc9934743
vbc.exe	2023-03-30 06:57:03	291a20fef6482b753cc6e9cc3d6bc292
vbc.exe	2023-03-30 06:58:03	92a24824d555bc8f4a947992d85027b0
sarkof2.1.exe	2023-04-02 10:25:03	796099660c004943c505c3bfaa6da30f
lifting.exe	2023-04-04 15:59:02	b674dc63057d15e26d5ca8842f4c0605
vbc.exe	2023-04-04 17:51:03	07267fb4371d348b4acecd5ebfab5d48
moneym.exe	2023-04-06 09:20:03	d1e89a0d687e93871aa837a29e2e7e7b
rrrr.exe	2023-04-06 13:00:03	5010f50fdbbebde8c86d9944dd9545a5
crypt.exe	2023-04-06 13:01:03	2936c28076b8434601dba5322b3bef97
kobaltrot2.1.exe	2023-04-12 15:21:03	b6f68a44bef0c41293546989812a5cb6
bena.exe	2023-04-14 12:55:03	39e45deeb4d63437eeacf4c1ceac450f
dcrossw.exe	2023-04-14 17:37:03	caea33e0d520c8a783732de2634c1017
secbobbyzx.exe	2023-04-15 18:15:01	2ecf5b982c71588bfd793cbd99906534
locacem2.1.exe	2023-04-16 03:27:02	241b78d02640dea21e13c5bb27f3070c
contrem2.1.exe	2023-04-18 16:35:02	08186cde92790a745f1e6fbf706fc800
joe.exe	2023-04-19 03:32:02	724ad0f724d2aba12940a1eeeede2980
vbc.exe	2023-04-19 16:37:02	8ac8e102ef0aeaebbd409103f9237c2f
vbc.exe	2023-04-20 08:34:03	6242a5f710c22a75e71aa48b4e195e6d
vbc.exe	2023-04-20 11:11:02	fd4d349554b93a53a3d5540a92f251c0
dcrossc.exe	2023-04-21 19:59:02	fcb1534a561fc1fe2954c00899e2815f
shedume2.1.exe	2023-04-24 16:53:02	c2193488994db0c99893eb8d336874e3
vbc.exe	2023-04-26 13:17:02	e5a5bcc3b19a3ff03d5643d1691678d1
thirdbobbyzx.exe	2023-04-26 21:54:02	80de9655ab7a7389bd07b3a8d7925ed0
vbc.exe	2023-04-26 21:55:02	bf06b230800b247480122519febf9b1b
vbc.exe	2023-04-27 05:11:02	c61c14e016aa835ade115c4e8463b20c
sddd.exe	2023-04-28 06:13:03	f30050237e1e4b07f13d8b4e4ecf8209
jogouno2.1.exe	2023-04-28 06:15:03	fcb68788824b596d0b130e6bfedb005a
ostaj2.1.exe	2023-05-06 09:41:03	c544c36f9031c1c13c9444edc245f55f
macois2.1.exe	2023-05-08 02:35:02	df314fcd1399753190aec99b8e01fb57
koriga2.1.exe	2023-05-08 02:41:03	77033e1ede922aa0962e181122d8332a
shinox2.1.exe	2023-05-08 02:42:02	58155673d0d47b5ee20a25ea89b07f23
vbc.exe	2023-05-08 18:36:03	743a03da4bca80da5f49be2b77050225
MON_pdf.exe	2023-05-10 10:23:02	b1779162ee18fdff9a550e23bec9b2c4
vbc.exe	2023-05-10 10:51:04	992a0de4e5038847edbe7f400f3ccfd2
jiji.exe	2023-05-13 03:34:02	9802783b4e35aa92668e689c1b40ac23
vbc.exe	2023-05-13 08:54:03	72f99c537d61d38a113e121348cce0dd
grt.exe	2023-05-15 08:37:02	846eb391b3c954776e1fed7d77fceb17
jenns.exe	2023-05-16 13:17:02	d35fc5185c8a58731cc0b8c4371e6c9c
pay.exe	2023-05-17 14:53:02	9cf450fc0f69cccd0aa1e7059ff464c6
vbc.exe	2023-05-22 03:32:02	f4fb22b77def98b9cc1231ab69a98f58
vbc.exe	2023-05-23 08:52:02	73a8a9702255cbfe07e92e81ccec6dca
dwm.exe	2023-05-24 10:12:01	6aa04c7bb5c5eb8386238f282825f57e
macilak2.1.exe	2023-05-24 20:34:03	1923b005546de11d38b39e4d3874c045
newamka2.1.exe	2023-05-25 06:00:02	bab6fa4f7c011c79009c17b8c419cc8a
ostraj2.1.exe	2023-05-26 04:36:03	21ffcbf147759f82745f07bfdb0662f4
swiss.exe	2023-05-26 09:41:03	9e57567ee21222fa361798821a9571aa
macrigan2.1.exe	2023-05-29 22:18:03	c5f9705e5682c03412ec7ca32e22c17c
smss.exe	2023-05-30 09:52:02	d9e03dba3c5cce141156dc0cdd710b31
smss.exe	2023-05-30 13:13:02	c044a0d5c30ed978cc2fdde590e037ec
smss.exe	2023-05-31 14:25:02	2cdc1ec873cdfe7feaa1b2ec9c246629
dd.exe	2023-06-01 08:01:03	6ea6237fd00b52f59dbb5ad00f11bd9d
wasx.exe	2023-06-01 09:18:02	5d278b330412fc5f0b05a6168e4663f7
ventascry.exe	2023-06-01 09:19:03	8a1e832674033cb7fdd73a8cf55971fd
eee23xe.exe	2023-06-03 09:27:02	19cb6550343998faee16c4f604a25f56
ojawar2.1.exe	2023-06-10 17:48:02	6b43c223d7bf1db3d6287decf2504719
cleanmgrs.exe	2023-06-13 13:10:03	bc3d73265d436ee95d52f88589993f52
cleanmgrs.exe	2023-06-13 13:21:02	0a5bf39759616592c2d8b63fc4192a2f
orimaje2.1.exe	2023-06-15 10:01:02	d7af0517b5d3fb8796ee44e44f3439b0
cleanmgrse.exe	2023-06-15 10:19:03	df4f4d8f3a20196e3cbeddfad102cfa5
cleanmgr.exe	2023-06-17 06:14:03	0556da46f62c3da93a0de233dc1d76a9
maps.exe	2023-06-17 06:15:02	02f7c729e7344aad545091d1bc408658
cleanmgr.exe	2023-06-17 06:16:02	1680103ba897689ec92f5940e043afb4
maps.exe	2023-06-17 07:54:02	622db6be2018e48a527cd178ae2f94b5
unsecapp.exe	2023-06-19 13:31:03	aa0bf88f08fb6d4ab0286244020d6518
liboshed2.1.exe	2023-06-19 14:05:03	4e13394b41e8d0cf8b1721aabdbfd719
juneowar2.1.exe	2023-06-19 18:28:03	ec77a84dddf6fef090dde4d2ab3a1007
nejorg2.1.exe	2023-06-19 18:31:04	a679e481d2868515a01976a1120c909c
pamac2.1.exe	2023-06-19 18:32:03	27070e69754c12f67e5541c7f0203f0a
lsass.exe	2023-06-20 07:09:03	fa24b7c4c3dc0c6d0b942eb96e4f18a0
DaHost.exe	2023-06-20 08:58:03	a048d50c92a80b789d2f68ff061376e1
lsass.exe	2023-06-20 09:28:03	af391ee598dcad6563b79a84a3976215
DaHostss.exe	2023-06-20 16:20:02	2d8cdf3b19f42ca059d7b02eea23ee17
unsecapp.exe	2023-06-21 07:03:03	297c423d2a4a52a7f109240ae70b4ca1
DaHostss.exe	2023-06-21 08:58:02	c5e31856527c65df6382fbc50deb1ded
shebronzy3.1.exe	2023-06-21 16:12:04	42a9512c2462575e98db4a30d1388f94
soft.exe	2023-06-22 16:58:03	fb374beeac9dbd0ce642063538e54cc6
festkon2.1.exe	2023-06-23 12:58:04	f14a6c2f0c53470577f1e3a66e34fe64
kashef2.1.exe	2023-06-23 12:59:03	77aa11300e110d3934f871a3820dbd12
ojonakon2.1.exe	2023-06-23 13:00:03	eb4ec13e49edaa7b70956780c01e766a

JJSploit_8.6.0_x64-setup.exe?ex=670ccbe7&is=670b7a67&hm=d53dd5960ada634306bc9c7c1ab192de1e5c0f74588d76741f8640cc5f1535e4&

File details

File features detected

OSINT Enrichments

URLs, FQDN and IP indicators 1

PE Sections 1 suspicious

PE Resources 5

Meta infos 6

Anti debug functions 2

Strings analysis - File found

Strings analysis - Possible URLs found 1

Import functions

Related files by ImpHash 199 61259b55b8912888e90f516ca08dc514