Windows Analysis Report
N1xTgd9EIL.exe

Overview

General Information

Sample name: N1xTgd9EIL.exe
renamed because original name is a hash value
Original sample name: 336ea82ea78876ccee0d2f59cb8a7ace.exe
Analysis ID: 1521403
MD5: 336ea82ea78876ccee0d2f59cb8a7ace
SHA1: 54299b14b64e981f17621cbb3f49ca594b7f570b
SHA256: 43c9667007a5524521d904bb6869f6afa66f2ea575d9eb089e62af8c9eeaeda8
Tags: exeuser-abuse_ch
Errors
  • No process behavior to analyse as no analysis process or sample was found
  • Corrupt sample or wrongly selected analyzer. Details: %1 is not a valid Win32 application.

Detection

Score: 1
Range: 0 - 100
Whitelisted: false
Confidence: 80%

Signatures

PE file does not import any functions
PE file overlay found

Classification

Source: N1xTgd9EIL.exe Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE
PE file does not import any functions
Source: N1xTgd9EIL.exe Static PE information: No import functions for PE file found
PE file overlay found
Source: N1xTgd9EIL.exe Static PE information: Data appended to the last section found
Source: classification engine Classification label: unknown1.winEXE@0/0@0/0
Source: N1xTgd9EIL.exe Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
Source: N1xTgd9EIL.exe Static PE information: data directory type: IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR
Source: N1xTgd9EIL.exe Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE

No Screenshots

No Behavior Graph

No contacted IP infos