File 90f6d8093a45e4f0279127a406564a299841df011b6f0a062c8561ff040e3c7b Summary
Like

Analyse score

0 / 14

No antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

exe

exe

Basic properties

CRC32

0x782e5ea0

MD5

72a5ce4b9f713740596ef8aad7e05017

Magic

PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows

SHA1

5486e84a860158f55ffe48bb2689036cb34ba69d

SHA256

90f6d8093a45e4f0279127a406564a299841df011b6f0a062c8561ff040e3c7b

SHA512

41da0553d5a1b6e9e3a385c2dda129e26817eed327bd01a4e32fc5fbe02c172dd81e152b0ac257070314f507f38f43e08067524d5f5068668ae0db235538ed59

SSDeep

3072:sRlPz8K+qk5cNaJmTBR5DFLd3BYrYGV17MeeYPqY:Kzcb5ckJmTBBLMYGz8uq

Size

150.00KB

Packer
  • PE: library: .NET(v4.0.30319)[-]
  • PE: linker: Microsoft Linker(48.0)[EXE32,console,admin]
TrID
  • 67.7% (.EXE) Generic CIL Executable (.NET, Mono, etc.) (73123/4/13)
  • 9.7% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 6.0% (.DLL) Win32 Dynamic Link Library (generic) (6578/25/2)
  • 4.6% (.EXE) Win16 NE executable (generic) (5038/12/1)
  • 4.1% (.EXE) Win32 Executable (generic) (4505/5/1)
Tags

ExifTool File Metadata

AssemblyVersion

1.0.0.0

CharacterSet

Unicode

CodeSize

5.50KB

Comments

CompanyName

EntryPoint

0x34b2

ExifToolVersionNumber

12.49

FileDescription

TropicoLauncher

FileFlags

(none)

FileFlagsMask

0x003f

FileOs

Win32

FileSize

154 kB

FileSubtype

0

FileType

Win32 EXE

FileTypeExtension

exe

FileVersion

1.0.0.0

FileVersionNumber

1.0.0.0

ImageFileCharacteristics

Executable, Large address aware

ImageVersion

0.0

InitializedDataSize

144.00KB

InternalName

TropicoLauncher.exe

LanguageCode

Neutral

LegalCopyright

Copyright © 2020

LegalTrademarks

LinkerVersion

48.0

MachineType

Intel 386 or later, and compatibles

MimeType

application/octet-stream

ObjectFileType

Executable application

OriginalFileName

TropicoLauncher.exe

OsVersion

4.0

PeType

PE32

ProductName

TropicoLauncher

ProductVersion

1.0.0.0

ProductVersionNumber

1.0.0.0

Subsystem

Windows command line

SubsystemVersion

6.0

UninitializedDataSize

0

Show all

Submissions

Published Name Source Country
TropicoLauncher.exe web FR

Indicators

Description Severity Category Module
Malware detection of a yara signature: Win32/WannaCry
malicious
Sandbox Detection Behavior
Communicates over HTTP with a low reputation domain
informational
C2 Behavior
Deletes itself after process termination
suspicious
Stealth Behavior
Write a file to the startup folder
suspicious
Persistence Behavior
Check for the existence of Virtual Machines
suspicious
Signature Yara

🚀 Coming soon!

Virtual Screens

🚀 Coming soon!