TeamViewplay[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TeamViewplay.exe
Size

6KB
MD5

5a95534fcddfe116af9041d88486a0a5
SHA1

bce1781135e413e0c46e981e79581f5d14882fe1
SHA256

fb63fcd4899df470dbeb17ac04a1e6797dab1770c84af5f3d12467207ea5b489
SHA512

33ffa002ec6b6901763d629fcb075dbf5032fb90964737c9a4094c8821826894082746906c9a2271602f87736285cecf731db6643e76a8bf3e0bf3b24b40aeb8
SSDEEP

96:05AQNaJ69KCqvUYe6bwIL1HpP8Tq/I+6spIiktzNt:CAQNaMKre6bwy2Tq/q+I9H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TeamViewplay.exe

Files

TeamViewplay.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ