AnyDesk (1)[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AnyDesk (1).exe
Size

3.7MB
MD5

293343fc652227aa24d56b6502ebdad9
SHA1

5a2e794a1e87e27037b166568e3b220bd0e70bc2
SHA256

d4f14e1776f60aeee61d23cf3f307ba0c83932d1268b6dfd0efe032660bd64c4
SHA512

d20f67442b906216121be05c8ef036aa6189dcc248d828c853241e38211e07af6055f604c7bd7622f6eb3295e4b1bbb9bf08fa9f854ec755dff5960d45aa239f
SSDEEP

12288:bl81fgOwYrLncPSbcvuth27JJMJUtJFmyTh31PHtt0ORvUb98rKEwG8T+qHx:p8xgerzwG6JuitJ7V31PHn0OBeG8TPx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AnyDesk (1).exe

Files

AnyDesk (1).exe
.exe windows:4 windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.\}c
Size: - Virtual size: 443KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.TQt
Size: 789KB - Virtual size: 788KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ