home

Jasper.exe

Jasper

Microsoft

Publisher:
Microsoft

Product:
Jasper

Version:
1.1.2.0

MD5:
129fe53331db045905db51a27823fe4e

SHA-1:
118492e887fc8792d67b7cbf3d59527a8d2b598c

SHA-256:
23c07a976ef263ac1ebe401d55e4265326763610a37345fea262ed0071239a9d

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 11:54:00 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.XPACK.Gen
7.11.30.172

File size:
16.5 KB (16,896 bytes)

Product version:
1.1.2.0

Copyright:
Copyright © 2015

Original file name:
Jasper.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\windowsapps\microsoft.nflonwindows10_1.1.3.0_x86__8wekyb3d8bbwe\jasper.exe

File PE Metadata
Compilation timestamp:
9/11/2015 2:07:08 AM

OS version:
6.2

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
192:upE1LOlrOFb3anSASxOyAHyfqgzPSWtp:uq1LwrOFb3anSASxJAHyfqgzKWt

Entry address:
0x7000

Entry point:
FF, 25, 00, 20, 40, 00, CC, CC, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.1777

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
512 Bytes (512 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to ec2-54-215-194-75.us-west-1.compute.amazonaws.com  (54.215.194.75:80)

TCP (HTTP):
Connects to a23-15-9-154.deploy.static.akamaitechnologies.com  (23.15.9.154:80)

TCP (HTTP):
Connects to a23-15-7-112.deploy.static.akamaitechnologies.com  (23.15.7.112:80)

TCP (HTTP SSL):
Connects to a172-232-221-124.deploy.static.akamaitechnologies.com  (172.232.221.124:443)

Scan Jasper.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.