home

display.exe

MD5:
17070c9a3cb5a457ed0535c621729f4f

SHA-1:
6329162c066ab50d707c8f7416e22e2dc93bd6ff

SHA-256:
12b2216872cd16d5df379d03cc234be6f7e3af8dcb4d4b0e40452e332bdb135e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 8:52:04 AM UTC  (today)

File size:
1.2 MB (1,207,296 bytes)

File type:
Executable application (Win16 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\display.exe

File PE Metadata
OS bitness:
Win16

CTPH (ssdeep):
24576:KcXejFjgyvn1rGADwFxtTlD6Ol7aUoE4uiBT9YIWpygf2JJgL3PG:0xvdKAER08aUL4Bp7WpvLu

Entry point:
4D, 5A, 00, 00, 0E, 00, 01, 00, 20, 00, 18, 00, FF, FF, 93, 01, 80, 00, 00, 00, 00, 00, 00, 00, 22, 00, 00, 00, 01, 00, FB, 20, 72, 6A, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.7410

Code size:
527.7 MB (553,320,449 bytes)

The file display.exe has been seen being distributed by the following URL.

http://www.logipole.com/download/konvertorfm/AddOns/Images/.../display.exe

Scan display.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.