Microsoft[.]Media[.]Player[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Microsoft.Media.Player.exe
Size

28KB
MD5

ab243178324e0ef1f8a3eaa31daf7d5a
SHA1

9ad21935249a3531ba3716cad76b8e5c1b2aadaa
SHA256

17843d6f85dea81b382649cb3f9516b7fa145784698166bf89c94a33d01f4d72
SHA512

13aee630e6e0ca3ba15e2f9f47ac52e4adb642a075c102afb90f5752761b1d291b56d3d1b419ca3a54ba70c6264f39078fd9eaea94ad7f4dde20fb2df36b8cbd
SSDEEP

384:JN7Jba3kuidZHTQTR//Bp4lAX1paZsMYsTkiezoWQiHkfU+Wd0+FMv1hWbGTW:JN7Ja3kuidZHTQTR//Bp4J+M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Microsoft.Media.Player.exe

Files

Microsoft.Media.Player.exe
.exe windows:6 windows x64 arch:x64

47b56cd9163e5e3ee34ff4f911ca974e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

microsoft.media.player

RHBinder__ShimExeMain

Sections

.rdata
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ