test.pdf.lnk
First submission 2024-10-14 12:46:32
File details
| File type: | MS Windows shortcut, Has Description string, Has command line arguments, Icon number=0, ctime=Sun Dec 31 23:10:04 1600, mtime=Sun Dec 31 23:10:04 1600, atime=Sun Dec 31 23:10:04 1600, length=0, window=hidenormalshowminimized |
| Mime type: | application/octet-stream |
| File size: | 574.52 KB (588304 bytes) |
| MD5: | 41f9cccb3ede1cd1a45df1189226d9a9 |
| SHA1: | cf6af13d62606afa4368e16fdc75a74e7580cd53 |
| SHA256: | 202f7c58a2538a1da49963e735d44475452aec5e5c055424f6edda743270767f |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://117.72.70.169/test.pdf.lnk  |
117.72.70.169 |
2024-10-14 12:46:32 |
Strings analysis - File found
| Library |
| api-ms-win-core-registry-l1-1-0.dll |
| ADVAPI32.dll |
| bin\amd64\MSPDB140.DLL |
| VCRUNTIME140D.dll |
| VCRUNTIME140_1D.dll |
| ole32.dll |
| MSVCP140D.dll |
| KERNEL32.dll |
| ucrtbased.dll |
Strings analysis - Possible IPs found 1
| 182.92.116.32 |