Suspect
1b094f384d614828a244f167887daebb
PE Executable | MD5: 1b094f384d614828a244f167887daebb | Size: 476.67 KB | application/x-dosexec
PE Executable
MD5: 1b094f384d614828a244f167887daebb
Size: 476.67 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Low
|
Hash | Hash Value |
|---|---|
| MD5 | 1b094f384d614828a244f167887daebb
|
| Sha1 | 6aa7faba4907b5d756bb32425d7f22990f5c4dfb
|
| Sha256 | 70edef5a9165f8776f6bde6c60108c0bbcc33e7d10e07d16024bfedf70ec008b
|
| Sha384 | e46e603eb4c87aee2b6b03823d5f055a6de016b036e6c9f8ecd6c8f6d846ba5d4f45ef51edce5ba2d54504384156cfa5
|
| Sha512 | a03511f9142ca411704ccb489b57b03fa3dca9fd9a367e6d05a6e0411e55e4bc3647e78ad776ad0f2909be19415b901b08d41b636d4ca7602a035711599e2aeb
|
| SSDeep | 12288:20OWZ8XGzxRNfMW7ANXEu+3DL2lXAOY2qYt6VpQ:vas33DqlpeYIV
|
| TLSH | DCA4F1542256EA03D5BA0BB81CA0D37857BC6F5AA411E343DEE8BDEB3C767442C81397
|
File Structure
1b094f384d614828a244f167887daebb
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
CSVViewer.Forms.MainForm.resources
CSVViewer.Properties.Resources.resources
KS
[NBF]root.Data
aECa
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: nhbW.pdb |
| Module Name | nhbW.exe |
| Full Name | nhbW.exe |
| EntryPoint | System.Void CSVViewer.Program::Main() |
| Scope Name | nhbW.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | nhbW |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 183 |
| Main Method | System.Void CSVViewer.Program::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void CSVViewer.Forms.MainForm::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
1b094f384d614828a244f167887daebb (476.67 KB)
File Structure
1b094f384d614828a244f167887daebb
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
CSVViewer.Forms.MainForm.resources
CSVViewer.Properties.Resources.resources
KS
[NBF]root.Data
aECa
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.