Suspicious
Suspect

1f1e5c3cd1d05638ef698face814b6f0

PE Executable
|
MD5: 1f1e5c3cd1d05638ef698face814b6f0
|
Size: 1.44 MB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Medium

Hash
 Hash Value
MD5
1f1e5c3cd1d05638ef698face814b6f0
Sha1
b6fd3e80fe29dc108cf16a560de21a884978f46c
Sha256
5619051c90bedc4a1af4f134d2e5ce60986dd838f264fa83833a7bd1aac9f125
Sha384
b6aa4926d1507bf853b6fd8209ec2dbfbf89eaf11eb6be5dabfbad760e90eef82527b46b9acd5e2534105038175a50c4
Sha512
8b27397d8efb61453692df28d1a95b31bfa8f5d9300a23de56d2473d892dd1b7f289649b8baef2d2556d63fc6ecb38bc17090d94ebd003e70b12e06ba6471c48
SSDeep
24576:GqyQCImKKEjn5J3/m+mAHEbokGJJ2gYelILtJEbYW2weLFkkzwY1PPpGdpGKUmCj:1lCdKKEjPdmAaokGJUgrlYJEbDgFkTYt
TLSH
D165335931144D35F1AC8B3AC43203561E82F6A1853E7EABDEFB1C68981AFCEDE506C5

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
1f1e5c3cd1d05638ef698face814b6f0
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Vihi
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

915rc.exe
Full Name

915rc.exe
EntryPoint

System.Void Rjvkv.Siugzii::Main()
Scope Name

915rc.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

915rc
Assembly Version

1.0.1593.29685
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

11
Main Method

System.Void Rjvkv.Siugzii::Main()
Main IL Instruction Count

14
Main IL

newobj System.Void d::.ctor() ldc.i4 6130 call System.String e::a(System.Int32) ldc.i4 6086 call System.String e::a(System.Int32) ldc.i4 5939 call System.String e::a(System.Int32) ldc.i4 5913 call System.String e::a(System.Int32) callvirt System.Void d::a(System.String,System.String,System.String,System.String) leave.s IL_0037: ret pop <null> leave.s IL_0037: ret ret <null>
Module Name

915rc.exe
Full Name

915rc.exe
EntryPoint

System.Void Rjvkv.Siugzii::Main()
Scope Name

915rc.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

915rc
Assembly Version

1.0.1593.29685
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

11
Main Method

System.Void Rjvkv.Siugzii::Main()
Main IL Instruction Count

14
Main IL

newobj System.Void d::.ctor() ldc.i4 6130 call System.String e::a(System.Int32) ldc.i4 6086 call System.String e::a(System.Int32) ldc.i4 5939 call System.String e::a(System.Int32) ldc.i4 5913 call System.String e::a(System.Int32) callvirt System.Void d::a(System.String,System.String,System.String,System.String) leave.s IL_0037: ret pop <null> leave.s IL_0037: ret ret <null>
1f1e5c3cd1d05638ef698face814b6f0 (1.44 MB)
File Structure
1f1e5c3cd1d05638ef698face814b6f0
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Vihi
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙