General
Structural Analysis
Config.0
Yara Rules17
Sync
Community
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 10269983fb22e6cb8e84351b5edca505
|
| Sha1 | be61a4ab3f2af5ae259c8a2bc924a8e5447e3261
|
| Sha256 | 51e373c325a0cf8254d9aed3915ee8874236d71c85b5367dcfbb6aa47a1b9fbb
|
| Sha384 | 1709c81b3885fad6e2e754e92da127d9529943404513251117677e946aa4365d333791177d3ab9515d666ea9334435a1
|
| Sha512 | d6d78ad403ba09087a8aa63a5ee3e51aee020b8ae9ec4af0fcb9ddb7710fee883e8d336d43ff43d192345c15e39005f47bcf163dba53c75102b10aa959753d28
|
| SSDeep | 12288:MrY7NmQJBCxg9CfPeIP7RR2tr794EwfJeSwF5uA2wE/RVxFwM3PvyCGhu4PXXO7C:MrY702BWgkhOtnuEWe9F5uxJrSQyLp2u
|
| TLSH | 19F412993220EA16C975ABB96971E13407BC2E9EB851D61A5EE83CEF7537F400C407E3
|
PeID
UPolyX 0.3 -> delikon
File Structure
10269983fb22e6cb8e84351b5edca505
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
UnitConvert.BidirectionalConverterForm.resources
UnitConvert.Properties.Resources.resources
VCtw
[NBF]root.Data
[NBF]root.Data-preview.png
de
[NBF]root.Data
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: Oohm.pdb |
| Module Name | Oohm.exe |
| Full Name | Oohm.exe |
| EntryPoint | System.Void UnitConvert.Program::Main() |
| Scope Name | Oohm.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Oohm |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 387 |
| Main Method | System.Void UnitConvert.Program::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void UnitConvert.MainMenuForm::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
10269983fb22e6cb8e84351b5edca505 (748.54 KB)
File Structure
10269983fb22e6cb8e84351b5edca505
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
UnitConvert.BidirectionalConverterForm.resources
UnitConvert.Properties.Resources.resources
VCtw
[NBF]root.Data
[NBF]root.Data-preview.png
de
[NBF]root.Data
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.