Suspicious
Suspect

11c680bfda67456c852987bf2bd0a714

PE Executable
|
MD5: 11c680bfda67456c852987bf2bd0a714
|
Size: 2 MB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics

Symbol Obfuscation Score

Medium

Hash
 Hash Value
MD5
11c680bfda67456c852987bf2bd0a714
Sha1
72897ca53822a4768357b37008c7d6d4e511fc27
Sha256
c299d556c97d0efb665ebdcd3f47593b689c3a997c019c27914402361b3d28ba
Sha384
f641c1a3173cf4d40d4fb022c7478056168c548ceb8c114e624ae0c3d9efe1b70582daf693c15b148ee9cabff83671b5
Sha512
b90c17d9a7d1a19c8fd546450cd1da20def593657729a50976c50ae2ccad753239cbc65dcadb98a208488f4b9c23bfd306fa87e6862f8c53cf841fdbfc40e3f1
SSDeep
24576:SSr1oezrKA0590BxGPGZD52Agy1w5NCaW7ES2M7xA:tJotGB2mD5Jw5NCR7wMK
TLSH
DD95F682F4A515A1C2469BBDD0EB044E4F296297EAC7D00FF19C2BC51F5BB81B9C7A43

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
11c680bfda67456c852987bf2bd0a714
[Authenticode]_54209be0.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
qSvdG
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

Authenticode present at 0x1E5000 size 11896 bytes
Module Name

IMMAGPAYT.exe
Full Name

IMMAGPAYT.exe
EntryPoint

System.Void IMMAGPAYT.Audit.ComparatorAuditor::ControlPredictor()
Scope Name

IMMAGPAYT.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

IMMAGPAYT
Assembly Version

5.5.3.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5
Total Strings

11
Main Method

System.Void IMMAGPAYT.Audit.ComparatorAuditor::ControlPredictor()
Main IL Instruction Count

2
Main IL

call System.Void IMMAGPAYT.Audit.ComparatorAuditor::a() ret <null>
Module Name

IMMAGPAYT.exe
Full Name

IMMAGPAYT.exe
EntryPoint

System.Void IMMAGPAYT.Audit.ComparatorAuditor::ControlPredictor()
Scope Name

IMMAGPAYT.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

IMMAGPAYT
Assembly Version

5.5.3.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5
Total Strings

11
Main Method

System.Void IMMAGPAYT.Audit.ComparatorAuditor::ControlPredictor()
Main IL Instruction Count

2
Main IL

call System.Void IMMAGPAYT.Audit.ComparatorAuditor::a() ret <null>
11c680bfda67456c852987bf2bd0a714 (2 MB)
File Structure
11c680bfda67456c852987bf2bd0a714
[Authenticode]_54209be0.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
qSvdG
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙