Suspicious
Suspect

0431e4bfb55854c4beb2d007b06fe999

PE Executable
|
MD5: 0431e4bfb55854c4beb2d007b06fe999
|
Size: 1.15 MB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
0431e4bfb55854c4beb2d007b06fe999
Sha1
cf4aaac4dd1847c2864173c4218013ffd619003e
Sha256
9d6b9c55919d028b4e3f6a031bc6c60a06f4b8963ffc9810f7604f01bf5128d8
Sha384
148f12c87be83dd891c13a104b9fc1c26969d2f24f5909258079727ab95d14c0baeb8d15c251f597f1605f2bc92fa812
Sha512
2f4263d0235eb06f4fdb3296f9e5b5b43336a5b6a6c4ae238ae34c00b2c799ef7f41a78c53459b172db36f71b4d3550035cd6d10a5bb114ca1a0ebd998601b6f
SSDeep
12288:fKSMcmP1FEAjeBaDIF7glh1+CbJnNiTNWvScpoba/FMmAdbG2Z8ZhgpsdC+VeDlQ:CJEAwdYFMmAd78vdC+UDlOOYbGe
TLSH
7A358EF63BC86A00E0FFB372552692A0B3F7BA9A86F1D60E15A3315535F05011B3676E

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
0431e4bfb55854c4beb2d007b06fe999
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0032
ID:0
ID:0033
ID:0
ID:0034
ID:0
ID:0035
ID:0
ID:0036
ID:0
ID:0037
ID:0
ID:0038
ID:0
ID:0039
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
9bwCpJ6.Cc9x3H_j.resources
9bwCpJ6.1bgSX0ioj.resources
PictureBox1.Image
[NBF]root.Data
[NBF]root.Data-preview.png
btn_ssalir.Image
[NBF]root.Data
[NBF]root.Data-preview.png
fff6fea9241445.Resources.resources
58c2fa490
[NBF]root.Data
58c2fa491
[NBF]root.Data
58c2fa4910
[NBF]root.Data
58c2fa4911
[NBF]root.Data
58c2fa4912
[NBF]root.Data
58c2fa4913
[NBF]root.Data
58c2fa4914
[NBF]root.Data
58c2fa4915
[NBF]root.Data
58c2fa4916
[NBF]root.Data
58c2fa4917
[NBF]root.Data
58c2fa4918
[NBF]root.Data
58c2fa4919
[NBF]root.Data
58c2fa492
[NBF]root.Data
58c2fa4920
[NBF]root.Data
58c2fa4921
[NBF]root.Data
58c2fa4922
[NBF]root.Data
58c2fa4923
[NBF]root.Data
58c2fa4924
[NBF]root.Data
58c2fa4925
[NBF]root.Data
58c2fa493
[NBF]root.Data
58c2fa494
[NBF]root.Data
58c2fa495
[NBF]root.Data
58c2fa496
[NBF]root.Data
58c2fa497
[NBF]root.Data
58c2fa498
[NBF]root.Data
58c2fa499
[NBF]root.Data
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

9bwCpJ6
Full Name

9bwCpJ6
EntryPoint

System.Void 9bwCpJ6.0ZtdGip46::8BtdEy4gs0()
Scope Name

9bwCpJ6
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

9bwCpJ6
Assembly Version

25.12.21.294
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

1884
Main Method

System.Void 9bwCpJ6.0ZtdGip46::8BtdEy4gs0()
Main IL Instruction Count

129
Main IL

nop <null> newobj System.Void System.Random::.ctor() stloc.0 <null> nop <null> ldloc.0 <null> ldc.i4.s -10 ldc.i4.s 10 callvirt System.Int32 System.Random::Next(System.Int32,System.Int32) stloc.2 <null> ldloc.2 <null> ldc.i4.0 <null> cgt <null> stloc.3 <null> ldloc.3 <null> brfalse.s IL_0048: nop ldstr System.AppDomain call System.Type System.Type::GetType(System.String) stloc.s V_4 ldloc.s V_4 ldstr CurrentDomain ldc.i4.s 24 callvirt System.Reflection.PropertyInfo System.Type::GetProperty(System.String,System.Reflection.BindingFlags) stloc.s V_5 ldloc.s V_5 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.PropertyInfo::GetValue(System.Object,System.Object[]) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> br.s IL_0066: nop nop <null> ldstr System.Object call System.Type System.Type::GetType(System.String) stloc.s V_6 ldloc.s V_6 call System.Object System.Activator::CreateInstance(System.Type) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> nop <null> nop <null> br.s IL_0007: nop nop <null> ldloc.1 <null> ldnull <null> ldstr Load ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> call System.Byte[] 9bwCpJ6.1bgSX0ioj::0MnbJe2mqEm() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::zi2Y4Xs brfalse.s IL_0093: ldsfld 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::Drq10 ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::zi2Y4Xs br.s IL_00A9: call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) ldsfld 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::Drq10 ldftn System.Byte 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::4xaXgFs9Ed8ko(System.Byte,System.Int32) newobj System.Void System.Func`3<System.Byte,System.Int32,System.Byte>::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Func`3<System.Byte,System.Int32,System.Byte> 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::zi2Y4Xs call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetTypes ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> ldc.i4.s 24 box System.Int32 stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetMethods ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) castclass System.Collections.IEnumerable callvirt System.Collections.IEnumerator System.Collections.IEnumerable::GetEnumerator() stloc.s V_7 br.s IL_0133: ldloc.s V_7 ldloc.s V_7 callvirt System.Object System.Collections.IEnumerator::get_Current() call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.s V_8 nop <null> ldloc.s V_8 castclass System.Reflection.MethodInfo ldnull <null> ldc.i4.0 <null> newarr System.Object callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_0131: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_9 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0131: nop nop <null> nop <null> ldloc.s V_7 callvirt System.Boolean System.Collections.IEnumerator::MoveNext() stloc.s V_10 ldloc.s V_10 brtrue.s IL_00FC: ldloc.s V_7 leave.s IL_0159: ret ldloc.s V_7 isinst System.IDisposable brfalse.s IL_0158: endfinally ldloc.s V_7 isinst System.IDisposable callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> ret <null>
Module Name

9bwCpJ6
Full Name

9bwCpJ6
EntryPoint

System.Void 9bwCpJ6.0ZtdGip46::8BtdEy4gs0()
Scope Name

9bwCpJ6
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

9bwCpJ6
Assembly Version

25.12.21.294
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

1884
Main Method

System.Void 9bwCpJ6.0ZtdGip46::8BtdEy4gs0()
Main IL Instruction Count

129
Main IL

nop <null> newobj System.Void System.Random::.ctor() stloc.0 <null> nop <null> ldloc.0 <null> ldc.i4.s -10 ldc.i4.s 10 callvirt System.Int32 System.Random::Next(System.Int32,System.Int32) stloc.2 <null> ldloc.2 <null> ldc.i4.0 <null> cgt <null> stloc.3 <null> ldloc.3 <null> brfalse.s IL_0048: nop ldstr System.AppDomain call System.Type System.Type::GetType(System.String) stloc.s V_4 ldloc.s V_4 ldstr CurrentDomain ldc.i4.s 24 callvirt System.Reflection.PropertyInfo System.Type::GetProperty(System.String,System.Reflection.BindingFlags) stloc.s V_5 ldloc.s V_5 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.PropertyInfo::GetValue(System.Object,System.Object[]) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> br.s IL_0066: nop nop <null> ldstr System.Object call System.Type System.Type::GetType(System.String) stloc.s V_6 ldloc.s V_6 call System.Object System.Activator::CreateInstance(System.Type) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> nop <null> nop <null> br.s IL_0007: nop nop <null> ldloc.1 <null> ldnull <null> ldstr Load ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> call System.Byte[] 9bwCpJ6.1bgSX0ioj::0MnbJe2mqEm() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::zi2Y4Xs brfalse.s IL_0093: ldsfld 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::Drq10 ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::zi2Y4Xs br.s IL_00A9: call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) ldsfld 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::Drq10 ldftn System.Byte 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::4xaXgFs9Ed8ko(System.Byte,System.Int32) newobj System.Void System.Func`3<System.Byte,System.Int32,System.Byte>::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Func`3<System.Byte,System.Int32,System.Byte> 9bwCpJ6.0ZtdGip46/em9H8Domc3RbQ.Ekn9fH::zi2Y4Xs call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetTypes ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> ldc.i4.s 24 box System.Int32 stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetMethods ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) castclass System.Collections.IEnumerable callvirt System.Collections.IEnumerator System.Collections.IEnumerable::GetEnumerator() stloc.s V_7 br.s IL_0133: ldloc.s V_7 ldloc.s V_7 callvirt System.Object System.Collections.IEnumerator::get_Current() call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.s V_8 nop <null> ldloc.s V_8 castclass System.Reflection.MethodInfo ldnull <null> ldc.i4.0 <null> newarr System.Object callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_0131: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_9 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0131: nop nop <null> nop <null> ldloc.s V_7 callvirt System.Boolean System.Collections.IEnumerator::MoveNext() stloc.s V_10 ldloc.s V_10 brtrue.s IL_00FC: ldloc.s V_7 leave.s IL_0159: ret ldloc.s V_7 isinst System.IDisposable brfalse.s IL_0158: endfinally ldloc.s V_7 isinst System.IDisposable callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> ret <null>
0431e4bfb55854c4beb2d007b06fe999 (1.15 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙