Dangermouse 5 Posted October 18, 2016 Share Posted October 18, 2016 I got the following error message in the log of an on-demand scan of some items on my desktop C:\Users\PC\Desktop\Outils Microsoft Office 2010\Microsoft Office 2010 Centre de téléchargement.exe » THINAPP » - unsupported archive what is unsupported about the scan of an .exe file ? Link to comment Share on other sites More sharing options...
itman 1,751 Posted October 18, 2016 Share Posted October 18, 2016 Just because a file has a suffix of .exe does not mean that it is indeed an executable. Scan the file at VirusTotal and see what is listed there. Link to comment Share on other sites More sharing options...
Dangermouse 5 Posted October 19, 2016 Author Share Posted October 19, 2016 (edited) https://www.virustotal.com/en/file/ecdf128637939e47fd1e9b63c61b1cd4de25bddd697843ad0a3763570696dde8/analysis/1476839066/ https://www.hybrid-analysis.com/sample/ecdf128637939e47fd1e9b63c61b1cd4de25bddd697843ad0a3763570696dde8?environmentId=100 Edited October 19, 2016 by Dangermouse Link to comment Share on other sites More sharing options...
itman 1,751 Posted October 19, 2016 Share Posted October 19, 2016 (edited) My guess is this .exe is some type of packed/encrypted malware. As such, Eset couldn't identify it and assigned it an undetermined archive category. Note that the only mainstream AV product used by VirusTotal, Symantec, classified the .exe as malware using heuristics. In other words, only after the .exe started execution was it caught. I have Office 2014 installed and msouc.exe resides in the Office 2014 directory and is signed by Microsoft. Did you check if your file was signed? Edited October 19, 2016 by itman Link to comment Share on other sites More sharing options...
Recommended Posts