Suspicious
Suspect

18b99117fb466297cd8e155841f10f15

PE Executable
|
MD5: 18b99117fb466297cd8e155841f10f15
|
Size: 867.84 KB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very low

Hash
 Hash Value
MD5
18b99117fb466297cd8e155841f10f15
Sha1
62836ed75848281594f1624a0e7330042e02bb49
Sha256
b7b732fb48d4f01254bd6dddaf1ab621180c8016a898baaa38ee6532341b718f
Sha384
b4b76977284d604adc33964fbf5c99e783eb72fa08d92d69a48bb6f3dfd5f86c3fb98f4a98c38abc5cb892916e16007e
Sha512
f9a892d6cf78c9ed36c99f07a43e997289d4786b1d9f51b81e4d8f01dfcebe7eb8dc5f927380793ac39bcfbc0e55b78f42aa7f3654b4642031abddb700cdee08
SSDeep
12288:Fp/vuiKkZCSZIUoA8RKwXu808pQmKxJRYEQU54bJU/yyykXbLk98ZBz0A:wMVV8RKw+umxJOxyjl
TLSH
B305D04232AA9D67D87A4AF10930D0B047B2BD5A75A9C2DD1DDABCCF7AF1F444212B13
File Structure
18b99117fb466297cd8e155841f10f15
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
ResourceTracing.Form1.resources
ColDel.Image
Colmax.Image
Colmin.Image
btnBackspace.Image
btnSave.Image
label10.Image
lblFullscreen.Image
lblInvoices.Image
lblItems.Image
lblLogout.Image
lblMinimize.Image
lblNormalscreen.Image
lblSaleReg.Image
lblSales.Image
lblUsers.Image
printPreviewDialog1.Icon
ResourceTracing.Invoices.resources
dataGridViewImageColumn1.Image
dataGridViewImageColumn2.Image
ResourceTracing.Itemadd.resources
ep.Icon
ep.TrayLocation
openFileDialog1.TrayLocation
toolStrip1.TrayLocation
toolStripButton2.Image
zipa
ResourceTracing.itemcatgry.resources
toolStripButton1.Image
ResourceTracing.Itemlist.resources
lblAddCat.Image
ResourceTracing.Login.resources
ResourceTracing.Properties.Resources.resources
close
close1
edit
gg
plus
plus1
trash
wNNY
ResourceTracing.UserAdd.resources
ResourceTracing.Users.resources
Informations
Name
 Value
Module Name

ybLn.exe
Full Name

ybLn.exe
EntryPoint

System.Void ResourceTracing.Program::Main()
Scope Name

ybLn.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

ybLn
Assembly Version

1.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

1326
Main Method

System.Void ResourceTracing.Program::Main()
Main IL Instruction Count

6
Main IL

call System.Void System.Windows.Forms.Application::EnableVisualStyles() ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) newobj System.Void ResourceTracing.Login::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) ret <null>
Artefacts
Name
 Value
Embedded Resources

10
Suspicious Type Names (1-2 chars)

0
18b99117fb466297cd8e155841f10f15 (867.84 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙