General
Structural Analysis
Config.0
Yara Rules20
Sync
Community
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Very high
|
Hash | Hash Value |
|---|---|
| MD5 | 14f22fcac2dc6adad0b2d8442c5cf34d
|
| Sha1 | d2ed9d6530841d23b8baeb2e839aef5985fd9674
|
| Sha256 | 5643b3d56917b069ad5765a7345033bf24eb09886a082fe0290596056014f54a
|
| Sha384 | bc2aefb88f6e87f392e7620fb6c43007479bfcb83abfad6a6da75eeefdaef8a0aae63d638e3504ada38f7da70bea1989
|
| Sha512 | 29f1985d14ba3036fba65c88c6285cab66fd34313fefbe23aab77c55a81afb239c30a69796384d58fd907f3834277fd5edc33c94fe78afcfa803ea2f566a4657
|
| SSDeep | 12288:KRWSlpyGcuWo4NreU6f5N0Q0DFPgA8z2P9ckHEvK15UFo8Sk:ApVXW9eUOMQUkqWWGFIk
|
| TLSH | C8C448257BEA0C10D994187D893E271ABB34E1F24B06A3C77352B2A65D46DDDCE2C2D3
|
File Structure
14f22fcac2dc6adad0b2d8442c5cf34d
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
)54]
.text
.rsrc
mNcQejRf
.????
S
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
xr1sr7qlzam62x
kv5wb0nvwaultc2kge39ffzqbd0e
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | Client.exe |
| Full Name | Client.exe |
| EntryPoint | System.Void UDwkSDviHXxdnSAbVjsyd.eWrKzxAWWxkqAFrQpYZfTie::FDZGvLBAGVeLRR(System.String[]) |
| Scope Name | Client.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Client |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 82 |
| Main Method | System.Void UDwkSDviHXxdnSAbVjsyd.eWrKzxAWWxkqAFrQpYZfTie::FDZGvLBAGVeLRR(System.String[]) |
| Main IL Instruction Count | 21 |
| Main IL | ckfinite <null> bgt <null> castclass <null> UNKNOWN1 <null> calli <null> div <null> stelem.i <null> rem.un <null> UNKNOWN1 <null> conv.ovf.u.un <null> ckfinite <null> refanyval <null> stsfld <null> ldelem.r4 <null> UNKNOWN1 <null> callvirt <null> UNKNOWN1 <null> nop <null> or <null> sub <null> ldc.i4 37408260 |
14f22fcac2dc6adad0b2d8442c5cf34d (585.73 KB)
File Structure
14f22fcac2dc6adad0b2d8442c5cf34d
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
)54]
.text
.rsrc
mNcQejRf
.????
S
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
xr1sr7qlzam62x
kv5wb0nvwaultc2kge39ffzqbd0e
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.