Sample: 4faecc611c96aca6e89ccc9840b000c9

Note: if you are new to ThreatMiner, check out the how-to page to find out how you can get the most out of this portal.

Metadata
File name:N/A
File type:PE32 executable (GUI) Intel 80386, for MS Windows
File size:237020
Analysis date:N/A
MD5:4faecc611c96aca6e89ccc9840b000c9
SHA1:6469f8dc22915446ad4f7704601c502e9ec7e051
SHA256:76c1d3adf2e4567536ad7a20513fd797d4bebfc8b63c3441dc1362e5c06a49dd
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
PE TypePE32
Internal Nameapplaunch.exe
CommentsFlavor=Retail
File Size231 kB
Machine TypeIntel 386 or later, and compatibles
File OSWin32
Code Size44032
OS Version5.0
Entry Point0xf000
File Flags Mask0x003f
Linker Version8.0
File SubtypeN/A
Uninitialized Data SizeN/A
File Version2.0.50727.3053 (netfxsp.050727-3000)
Initialized Data Size4608
File DescriptionMicrosoft .NET ClickOnce Launch Utility
Product Version Number2.0.50727.3053
Product NameMicrosoft® .NET Framework
Company NameMicrosoft Corporation
MIME Typeapplication/octet-stream
Character SetUnicode
Language CodeEnglish (U.S.)
File Version Number2.0.50727.3053
File TypeWin32 EXE
Original Filenameapplaunch.exe
Legal Copyright© Microsoft Corporation. All rights reserved.
SubsystemWindows GUI
Object File TypeExecutable application
Image Version8.0
File Flags(none)
Subsystem Version4.0
Product Version2.0.50727.3053
Source:
APTNotes
Cyber threat intelligence reports associated with 4faecc611c96aca6e89ccc9840b000c9.
Loading...
Domains
Domains the malware sample communicates with.
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about 4faecc611c96aca6e89ccc9840b000c9.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.