|
Analyzing...
|
File Name: StopAd_Installer.exe
SHA1: af9b8e0ba0c61c949c9479f15ad2b48e286d3da1
MD5: 6f858290adad6f917a6b7542729ae4b4
First Seen Date: 2018-01-02 19:41:23.058714 ( )
Number of Clients Seen: 4
Last Analysis Date: 2018-01-02 19:41:23.058714 ( )
Human Expert Analysis Result: No human expert analysis verdict given to this sample yet.
Analysis Summary
| Analysis Type | Date | Verdict | |
|---|---|---|---|
| Signature Based Detection | 2018-01-02 19:41:23.058714 | Clean | |
| Static Analysis Overall Verdict | 2018-01-02 19:41:23.058714 | No Threat Found | help |
| Dynamic Analysis Overall Verdict | 2018-01-02 19:41:23.058714 | No Threat Found | help |
| Precise Detectors Overall Verdict | 2018-01-02 19:41:23.058714 | No Match | help |
Static Analysis
| Static Analysis Overall Verdict | Result |
|---|---|
| No Threat Found | help |
| Detector | Result | |
|---|---|---|
| Optional Header LoaderFlags field is valued illegal | Clean | |
| Non-ascii or empty section names detected | Clean | |
| Illegal size of optional Header | Clean | |
| Packer detection on signature database | Unknown | help |
| Based on the sections entropy check! file is possibly packed | Suspicious | |
| Timestamp value suspicious | Clean | |
| Header Checksum is zero! | Clean | |
| Enrty point is outside the 1st(.code) section! Binary is possibly packed | Clean | |
| Optional Header NumberOfRvaAndSizes field is valued illegal | Clean | |
| Anti-vm present | Clean | |
| The Size Of Raw data is valued illegal! Binary might crash your disassembler/debugger | Clean | |
| TLS callback functions array detected | Clean | |
Packer detection on signature database
Microsoft Visual C# / Basic .NET
.NET executable
Dynamic Analysis
| Dynamic Analysis Overall Verdict | Result |
|---|---|
| No Threat Found | help |
| Suspicious Behaviors | |
|---|---|
| Has no visible windows | |
Behavioral Information
C:\Windows\SysWOW64\rundll32.exe
Precise Detectors Analysis Results
| Detector Name | Date | Verdict | Reason | |
|---|---|---|---|---|
| Static Precise PUA Detector 1 | 2018-01-02 19:40:49.857786 | No Match | help | NotDetected |
| Static Precise Virus Detector | 2018-01-02 19:40:49.864949 | No Match | help | NotDetected |
| Static Precise Trojan Detector | 2018-01-02 19:40:49.884796 | No Match | help | NotDetected |
| Static Precise Adware InstallCore Detector 1 | 2018-01-02 19:40:49.878657 | No Match | help | NotDetected |
| Static Precise Trojan Detector 2 | 2018-01-02 19:40:49.879292 | No Match | help | NotDetected |
| Static Precise Trojan Detector 3 | 2018-01-02 19:40:49.879683 | No Match | help | NotDetected |
| Static Precise Trojan Generic Cryptor Detector 1 | 2018-01-02 19:40:49.885962 | No Match | help | NotDetected |
| Static Precise Virus Detector 2 | 2018-01-02 19:40:49.889814 | No Match | help | NotDetected |
Advance Heuristics
No Advanced Heuristic Analysis Result Received
Additional File Information
| Property | Value |
|---|
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | MD5 |
|---|