General
Structural Analysis
Config.0
Yara Rules31
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
Symbol Obfuscation Score
Very high
|
Hash | Hash Value |
|---|---|
| MD5 | 178972f9bec0c8c53dd9e1c53d071cd8
|
| Sha1 | 3938594ac6af23f85d2d1bf25b87c4e7a8dd6feb
|
| Sha256 | b71f2af8f9e3ed65f4b2cb36ea9794e56b25d55e0a6e0dc73929913c596ffae0
|
| Sha384 | 375ac3d56db1ba1ae7c282c388841fab6681966425640eee282d1439f8743e8e72163ea93db3415a7989325e12c05aea
|
| Sha512 | ac99b594687ff16525d577ed70f93219a7abcbef716a57be308cfda6593f3e1f70f63f127980f362d44363919b16037d610234f32d4f09cfd6cbd577d9a286af
|
| SSDeep | 12288:Vz/NfJsCTxNeDwkTT0N0rTds7Y71bfdvfSFgt8R3:RcCTxULTTjrTdsw1bw6aR3
|
| TLSH | FD052A07B7858EA2D2541B36D1D74400D3E5EA823FEFDA2F728513A629023EEDD07A57
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
178972f9bec0c8c53dd9e1c53d071cd8
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
PpgD
uDPA
npDEMcvu6FnpxSRNgT.mV3yNsaTxOyg0BiGLJ
lnbZC8n79C4QXUubsB.dyNuZVMvK5VaJjArrP
PvcT7pshlwDALSa2ZB.LGJVUSZgMOi8PsWeK1
CRYvbcIuuSN9A0luuT.xBolOfESWrjFT8rosr
fehlm
Zrnaaurglqs.g.resources
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | Zrnaaurglqs.dll |
| Full Name | Zrnaaurglqs.dll |
| Scope Name | Zrnaaurglqs.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Zrnaaurglqs |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 55 |
| Main Method | Not found or no body |
| Module Name | Zrnaaurglqs.dll |
| Full Name | Zrnaaurglqs.dll |
| Scope Name | Zrnaaurglqs.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Zrnaaurglqs |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 55 |
| Main Method | Not found or no body |
178972f9bec0c8c53dd9e1c53d071cd8 (857.09 KB)
File Structure
178972f9bec0c8c53dd9e1c53d071cd8
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
PpgD
uDPA
npDEMcvu6FnpxSRNgT.mV3yNsaTxOyg0BiGLJ
lnbZC8n79C4QXUubsB.dyNuZVMvK5VaJjArrP
PvcT7pshlwDALSa2ZB.LGJVUSZgMOi8PsWeK1
CRYvbcIuuSN9A0luuT.xBolOfESWrjFT8rosr
fehlm
Zrnaaurglqs.g.resources
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.