File: 001f18f911799970db2ab101e97bce2a

Metadata
File name:N/A
File type:PE32 executable (GUI) Intel 80386, for MS Windows
File size:359803
Analysis date:N/A
MD5:001f18f911799970db2ab101e97bce2a
SHA1:7d08644491024bf85d9135b6895f8e46889a6a96
SHA256:899511ce8fe162b80475e4d1fc885155009393ed53e45d3550db513a5eadfedb
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
PE TypePE32
Assembly Version1.0.0.0
Internal NameScreenie.exe
File Size351 kB
Machine TypeIntel 386 or later, and compatibles
File OSWin32
Code Size16384
OS Version5.0
Entry Point0x41b9
File Flags Mask0x003f
Linker Version9.0
File SubtypeN/A
Uninitialized Data SizeN/A
File Version1.0.0.0
Initialized Data Size12288
File DescriptionN/A
Product Version Number1.0.0.0
PackagerXenocode Postbuild 2009 for .NET Beta
MIME Typeapplication/octet-stream
Character SetUnicode
Language CodeNeutral
File Version Number1.0.0.0
File TypeWin32 EXE
Original FilenameScreenie.exe
Legal CopyrightN/A
Packager Version7.0.162
SubsystemWindows GUI
Object File TypeExecutable application
Image Version0.0
File Flags(none)
Subsystem Version5.0
Product Version1.0.0.0
Source:
APTNotes
Cyber threat intelligence reports associated with 001f18f911799970db2ab101e97bce2a.
Loading...
Domains
Domains the malware sample communicates with.
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
AntiVirTR/Dropper.Gen
ByteHeroTrojan.Win32.Heur.Gen
ClamAVTrojan.Dropper-28236
ComodoBackdoor.Win32.Poison.~AB
DrWebTrojan.MulDrop.32791
EmsisoftTrojan-Spy.MSIL!IK
F-SecureTrojan:W32/Agent.DRMD
FortinetRiskware/Generic
IkarusTrojan-Spy.MSIL
JiangminBackdoor/Poison.csq
KasperskyHEUR:Trojan.Win32.Generic
VBA32Backdoor.Win32.Poison.apfs
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about 001f18f911799970db2ab101e97bce2a.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.