Suspicious
Suspect

00a03fa3acbedb19ddbedede4fc36861

PE Executable
|
MD5: 00a03fa3acbedb19ddbedede4fc36861
|
Size: 1.41 MB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
00a03fa3acbedb19ddbedede4fc36861
Sha1
7adfbfa78e0a303a238cd64bdb29f698f3192a9a
Sha256
43885d920258d6685b0896c6214b22b5c9f242b1ab76e75797abd91b09c52810
Sha384
d9439c62fab2209183d8012145bb862ca96308d3e182a5ed9c822cb8f9c7f68395d52ddbddae4bdd8c56ae2b43547277
Sha512
1561d9cd0a9dbce381297c6fd1611f7cb0b588322446185c80a69d8aa8da7d7a8f6af7ea12c1700019cd6dede09977972e6903ef254a57a00b1b3680e6a26db4
SSDeep
24576:3fMUdfMs1hsAdBen2pqpOpojZ6tm48Y01KObVQezrdD:3fMUdfTfemOj94pGvQeN
TLSH
7755F10907D58598F4B9DB34A37A361547F0B41BD836EFAF938421F88E3679AA143363

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
00a03fa3acbedb19ddbedede4fc36861
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
0rwSffT4.g.resources
0rwSffT4.Resources.resources
297c61d979d079.Resources.resources
d9c431ff0
[NBF]root.Data
d9c431ff1
[NBF]root.Data
d9c431ff10
[NBF]root.Data
d9c431ff11
[NBF]root.Data
d9c431ff12
[NBF]root.Data
d9c431ff13
[NBF]root.Data
d9c431ff14
[NBF]root.Data
d9c431ff15
[NBF]root.Data
d9c431ff16
[NBF]root.Data
d9c431ff17
[NBF]root.Data
d9c431ff18
[NBF]root.Data
d9c431ff19
[NBF]root.Data
d9c431ff2
[NBF]root.Data
d9c431ff20
[NBF]root.Data
d9c431ff21
[NBF]root.Data
d9c431ff22
[NBF]root.Data
d9c431ff23
[NBF]root.Data
d9c431ff24
[NBF]root.Data
d9c431ff25
[NBF]root.Data
d9c431ff26
[NBF]root.Data
d9c431ff27
[NBF]root.Data
d9c431ff28
[NBF]root.Data
d9c431ff29
[NBF]root.Data
d9c431ff3
[NBF]root.Data
d9c431ff30
[NBF]root.Data
d9c431ff31
[NBF]root.Data
d9c431ff32
[NBF]root.Data
d9c431ff33
[NBF]root.Data
d9c431ff34
[NBF]root.Data
d9c431ff35
[NBF]root.Data
d9c431ff36
[NBF]root.Data
d9c431ff37
[NBF]root.Data
d9c431ff4
[NBF]root.Data
d9c431ff5
[NBF]root.Data
d9c431ff6
[NBF]root.Data
d9c431ff7
[NBF]root.Data
d9c431ff8
[NBF]root.Data
d9c431ff9
[NBF]root.Data
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

0rwSffT4
Full Name

0rwSffT4
EntryPoint

System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::Sg9jj0fGWn7()
Scope Name

0rwSffT4
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

0rwSffT4
Assembly Version

4.15.21.245
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

850
Main Method

System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::Sg9jj0fGWn7()
Main IL Instruction Count

86
Main IL

nop <null> call System.Boolean 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::jJb8H() ldc.i4.0 <null> ceq <null> stloc.0 <null> ldloc.0 <null> brfalse.s IL_0015: nop ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) nop <null> nop <null> nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> nop <null> nop <null> newobj System.Void 0rwSffT4.tf1WN4ggyz::.ctor() stloc.1 <null> ldloc.1 <null> callvirt System.Void System.Windows.Forms.Control::Show() nop <null> ldloc.1 <null> call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> leave.s IL_0040: leave IL_00C6 nop <null> ldloc.1 <null> brfalse.s IL_003F: endfinally ldloc.1 <null> callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> leave IL_00C6: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.2 <null> nop <null> ldstr UI_INIT_FAILED ldloc.2 <null> callvirt System.String System.Exception::get_Message() call System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::S_f7p3nW8Zgp(System.String,System.String) nop <null> nop <null> ldc.i4 300 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldstr mougetmot call System.Byte[] 0rwSffT4.Wai9nA4sm6/Xb4qm0j.Wx6fpYy3ej5S8Z::rWb48je(System.String) stloc.3 <null> ldloc.3 <null> ldnull <null> ceq <null> stloc.s V_4 ldloc.s V_4 brfalse.s IL_0087: nop ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) nop <null> nop <null> nop <null> ldloc.3 <null> call System.Void 0rwSffT4.cRa21dzExq/Ryw2n3zDpN8p.Cr2jpwY4S::1xmLJ_7yojH2Ka(System.Byte[]) nop <null> leave.s IL_00B3: leave.s IL_00BE dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_5 nop <null> ldstr CONFIG_UPDATE_FAILED ldloc.s V_5 callvirt System.String System.Exception::get_Message() call System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::S_f7p3nW8Zgp(System.String,System.String) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00B3: leave.s IL_00BE leave.s IL_00BE: nop nop <null> ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) nop <null> endfinally <null> nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00C6: nop nop <null> ret <null>
Module Name

0rwSffT4
Full Name

0rwSffT4
EntryPoint

System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::Sg9jj0fGWn7()
Scope Name

0rwSffT4
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

0rwSffT4
Assembly Version

4.15.21.245
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

850
Main Method

System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::Sg9jj0fGWn7()
Main IL Instruction Count

86
Main IL

nop <null> call System.Boolean 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::jJb8H() ldc.i4.0 <null> ceq <null> stloc.0 <null> ldloc.0 <null> brfalse.s IL_0015: nop ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) nop <null> nop <null> nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> nop <null> nop <null> newobj System.Void 0rwSffT4.tf1WN4ggyz::.ctor() stloc.1 <null> ldloc.1 <null> callvirt System.Void System.Windows.Forms.Control::Show() nop <null> ldloc.1 <null> call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> leave.s IL_0040: leave IL_00C6 nop <null> ldloc.1 <null> brfalse.s IL_003F: endfinally ldloc.1 <null> callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> leave IL_00C6: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.2 <null> nop <null> ldstr UI_INIT_FAILED ldloc.2 <null> callvirt System.String System.Exception::get_Message() call System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::S_f7p3nW8Zgp(System.String,System.String) nop <null> nop <null> ldc.i4 300 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldstr mougetmot call System.Byte[] 0rwSffT4.Wai9nA4sm6/Xb4qm0j.Wx6fpYy3ej5S8Z::rWb48je(System.String) stloc.3 <null> ldloc.3 <null> ldnull <null> ceq <null> stloc.s V_4 ldloc.s V_4 brfalse.s IL_0087: nop ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) nop <null> nop <null> nop <null> ldloc.3 <null> call System.Void 0rwSffT4.cRa21dzExq/Ryw2n3zDpN8p.Cr2jpwY4S::1xmLJ_7yojH2Ka(System.Byte[]) nop <null> leave.s IL_00B3: leave.s IL_00BE dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_5 nop <null> ldstr CONFIG_UPDATE_FAILED ldloc.s V_5 callvirt System.String System.Exception::get_Message() call System.Void 0rwSffT4.tf1WN4ggyz/jf5YHnw.6XsqxxR2Wo::S_f7p3nW8Zgp(System.String,System.String) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00B3: leave.s IL_00BE leave.s IL_00BE: nop nop <null> ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) nop <null> endfinally <null> nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00C6: nop nop <null> ret <null>
00a03fa3acbedb19ddbedede4fc36861 (1.41 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙