Suspect
PortCircuitry.exe
PE Executable | MD5: 214a4ad591206df6f4e18f5b876473c9 | Size: 3.41 MB | application/x-dosexec
PE Executable
MD5: 214a4ad591206df6f4e18f5b876473c9
Size: 3.41 MB
application/x-dosexec
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 214a4ad591206df6f4e18f5b876473c9
|
| Sha1 | 35daea08499abe583292b6f474b4cbb0f4dee053
|
| Sha256 | 4c51bc3a44b63bd7104998d7d473edcd4acca8165b4b6a16ebbc5101146ca989
|
| Sha384 | e791eeedda69c2669c83617e528320d6830910352ae3b77af90e0edd94bd06ed4c6726875444057b38583bc5c80c10ee
|
| Sha512 | a6a03565426758831a1f6dbfffabcf4fcdbcf9060f82cb5767fc9bfb0a389462201088dbd43b3ee5c9932eb0ad62710980e8452c805e9a1038c48b93768e9c89
|
| SSDeep | 49152:HIH624a56H0Z0NyVJobHL3LwabKreD5lyTniPtgoHYuFdcoti5:58eLCreTyT2go4ug5
|
| TLSH | C6F56A56A6EA50D4C5A2C078C557864BE7F2B8200B3287DB317C8B5E9F376E54E3E231
|
PeID
Microsoft Visual C++ 8.0 (DLL)
Microsoft Visual C++ v6.0 DLL
Pe123 v2006.4.4-4.12
File Structure
[Authenticode]_f823db31.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.00cfg
.retplne
.tls
.rsrc
.reloc
Resources
AFX_DIALOG_LAYOUT
ID:0066
ID:1033
PNG
ID:0142
ID:1055
ID:1055-preview.png
ID:0143
ID:1055
ID:1055-preview.png
RT_ICON
ID:0001
ID:1055
ID:0002
ID:1055
ID:0003
ID:1055
ID:0004
ID:1055
ID:0005
ID:1055
ID:0006
ID:1055
ID:1055-preview.png
ID:0007
ID:1055
ID:0008
ID:1055
ID:0009
ID:1055
RT_DIALOG
ID:0066
ID:1033
ID:0067
ID:1055
RT_STRING
ID:000D
ID:1055
ID:000E
ID:1055
ID:0013
ID:1055
ID:0014
ID:1055
RT_GROUP_CURSOR4
ID:0141
ID:1055
RT_VERSION
ID:0001
ID:1055
RT_HTML
ID:0068
ID:1033
ID:0069
ID:1055
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | Authenticode present at 0x335C00 size 41976 bytes |
| Info | PDB Path: dragon_helper.exe.pdb |
PortCircuitry.exe (3.41 MB)
File Structure
[Authenticode]_f823db31.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.00cfg
.retplne
.tls
.rsrc
.reloc
Resources
AFX_DIALOG_LAYOUT
ID:0066
ID:1033
PNG
ID:0142
ID:1055
ID:1055-preview.png
ID:0143
ID:1055
ID:1055-preview.png
RT_ICON
ID:0001
ID:1055
ID:0002
ID:1055
ID:0003
ID:1055
ID:0004
ID:1055
ID:0005
ID:1055
ID:0006
ID:1055
ID:1055-preview.png
ID:0007
ID:1055
ID:0008
ID:1055
ID:0009
ID:1055
RT_DIALOG
ID:0066
ID:1033
ID:0067
ID:1055
RT_STRING
ID:000D
ID:1055
ID:000E
ID:1055
ID:0013
ID:1055
ID:0014
ID:1055
RT_GROUP_CURSOR4
ID:0141
ID:1055
RT_VERSION
ID:0001
ID:1055
RT_HTML
ID:0068
ID:1033
ID:0069
ID:1055
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.