Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | Oct. 26, 2024, 6:04 a.m. | Oct. 26, 2024, 6:06 a.m. |
-
Coodesker-x64_1.0.7.0.exe "C:\Users\test22\AppData\Local\Temp\Coodesker-x64_1.0.7.0.exe"
2548
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
pdb_path | E:\Tools\Future\coodesker\bin\installer-x64.pdb |
resource name | UI |
name | UI | language | LANG_CHINESE | filetype | Zip archive data, at least v2.0 to extract | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x000f3550 | size | 0x00013d6c | ||||||||||||||||||
name | RT_ICON | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x0011b5a0 | size | 0x00042028 | ||||||||||||||||||
name | RT_ICON | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x0011b5a0 | size | 0x00042028 | ||||||||||||||||||
name | RT_ICON | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x0011b5a0 | size | 0x00042028 | ||||||||||||||||||
name | RT_ICON | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x0011b5a0 | size | 0x00042028 | ||||||||||||||||||
name | RT_ICON | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x0011b5a0 | size | 0x00042028 | ||||||||||||||||||
name | RT_RCDATA | language | LANG_CHINESE | filetype | Zip archive data, at least v2.0 to extract | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x0015d618 | size | 0x002d15e3 | ||||||||||||||||||
name | RT_GROUP_ICON | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x0015d5c8 | size | 0x0000004c | ||||||||||||||||||
name | RT_VERSION | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x000f3290 | size | 0x000002c0 |
section | {u'size_of_data': u'0x0033c000', u'virtual_address': u'0x000f3000', u'entropy': 7.782157276764285, u'name': u'.rsrc', u'virtual_size': u'0x0033be90'} | entropy | 7.78215727676 | description | A section with a high entropy has been found | |||||||||
entropy | 0.774918109499 | description | Overall entropy of this PE file is high |
ALYac | Gen:Variant.Ser.Tedy.6520 |
VIPRE | Gen:Variant.Ser.Tedy.6520 |
BitDefender | Gen:Variant.Ser.Tedy.6520 |
Cybereason | malicious.26528e |
Arcabit | Trojan.Ser.Tedy.D1978 [many] |
MicroWorld-eScan | Gen:Variant.Ser.Tedy.6520 |
Emsisoft | Gen:Variant.Ser.Tedy.6520 (B) |
FireEye | Gen:Variant.Ser.Tedy.6520 |
MAX | malware (ai score=80) |
GData | Gen:Variant.Ser.Tedy.6520 (2x) |
AhnLab-V3 | Malware/Win.Generic.C5636592 |
MaxSecure | Trojan.Malware.277046244.susgen |
Fortinet | PossibleThreat.MU |