Windows Analysis Report
BTVA.jpg.lnk

Overview

General Information

Sample Name: BTVA.jpg.lnk
Analysis ID: 795655
MD5: 50c81ec9e93c43ee6142a56d96000886
SHA1: d91a27e9cb7eb2f8ee8a952ec8d5db5cee1f90a9
SHA256: d304e28d717a2af0c49337800bb901bdc85eb58ad82d32570b6ceb1df96da576
Tags: Amadeylnk
Errors
  • No process behavior to analyse as no analysis process or sample was found

Detection

Score: 20
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Uses an obfuscated file name to hide its real file extension (double extension)

Classification

Source: classification engine Classification label: sus20.evad.winLNK@0/0@0/0

Hooking and other Techniques for Hiding and Protection
barindex
Uses an obfuscated file name to hide its real file extension (double extension)
Source: Possible double extension: jpg.lnk Static PE information: BTVA.jpg.lnk
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 795655 Sample: BTVA.jpg.lnk Startdate: 01/02/2023 Architecture: WINDOWS Score: 20 5 Uses an obfuscated file name to hide its real file extension (double extension) 2->5
No contacted IP infos