Suspicious
Suspect

216a90a2da1fa7db906d84bc4d31e968

PE Executable
|
MD5: 216a90a2da1fa7db906d84bc4d31e968
|
Size: 1.01 MB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
216a90a2da1fa7db906d84bc4d31e968
Sha1
bf074778f71aaf68e64b17f67ebf3688ad5c88ac
Sha256
cc66dc9b0e6bbeea12140359878ca7d851fd0fa452b741900314d315909ba3cc
Sha384
0a4b1a862b98f90b48d67603b622ebd342099a2b91da298f6ef395fc1af79fd468263c70a77be2302734e5f36fa218e6
Sha512
2d1902ddd592cac9e354fef00663c951659b34c6aeca5812b4c9447a71caab418171d369ba1d51cae2c3fab4655c49f632f4a76c7bb43bd8d6871abd7880e15a
SSDeep
12288:cR6Ez3VXlyxjS/gpKEtnMt/5OGpo5hc40f3o5KpT/bG3K6vJtYSYSm2Ef:kzF1icYGpoDc/45yT/bG3K67YS
TLSH
38259DE11EA43F51D17EFF364B76097067FEB8828E62CB49344723A75A2270698C07D6

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
216a90a2da1fa7db906d84bc4d31e968
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
FiberaDigit.fibraship.ico
7ayYdkX3.9ekZcnS3.resources
$this.Icon
[NBF]root.IconData
AboutDeveloperToolStripMenuItem.Image
[NBF]root.Data
[NBF]root.Data-preview.png
AboutSoftwareToolStripMenuItem.Image
[NBF]root.Data
[NBF]root.Data-preview.png
ExitToolStripMenuItem.Image
[NBF]root.Data
[NBF]root.Data-preview.png
SettingsToolStripMenuItem.Image
[NBF]root.Data
[NBF]root.Data-preview.png
7ayYdkX3.Resources.resources
c7f993b432035b.Resources.resources
4573ae010
[NBF]root.Data
4573ae011
[NBF]root.Data
4573ae0110
[NBF]root.Data
4573ae0111
[NBF]root.Data
4573ae0112
[NBF]root.Data
4573ae0113
[NBF]root.Data
4573ae0114
[NBF]root.Data
4573ae0115
[NBF]root.Data
4573ae0116
[NBF]root.Data
4573ae0117
[NBF]root.Data
4573ae0118
[NBF]root.Data
4573ae0119
[NBF]root.Data
4573ae012
[NBF]root.Data
4573ae0120
[NBF]root.Data
4573ae0121
[NBF]root.Data
4573ae013
[NBF]root.Data
4573ae014
[NBF]root.Data
4573ae015
[NBF]root.Data
4573ae016
[NBF]root.Data
4573ae017
[NBF]root.Data
4573ae018
[NBF]root.Data
4573ae019
[NBF]root.Data
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

7ayYdkX3
Full Name

7ayYdkX3
EntryPoint

System.Void 7ayYdkX3.dg6Gb1::9jyDK7fcdMq64t()
Scope Name

7ayYdkX3
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

7ayYdkX3
Assembly Version

1.17.7.157
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

2241
Main Method

System.Void 7ayYdkX3.dg6Gb1::9jyDK7fcdMq64t()
Main IL Instruction Count

73
Main IL

nop <null> ldtoken System.Windows.Forms.Application call System.Type System.Type::GetTypeFromHandle(System.RuntimeTypeHandle) stloc.0 <null> ldloc.0 <null> ldstr EnableVisualStyles ldc.i4.s 24 callvirt System.Reflection.MethodInfo System.Type::GetMethod(System.String,System.Reflection.BindingFlags) ldnull <null> ldnull <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> ldloc.0 <null> ldstr SetCompatibleTextRenderingDefault ldc.i4.s 24 callvirt System.Reflection.MethodInfo System.Type::GetMethod(System.String,System.Reflection.BindingFlags) ldnull <null> ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> ldc.i4.0 <null> box System.Boolean stelem.ref <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> call System.OperatingSystem System.Environment::get_OSVersion() callvirt System.Version System.OperatingSystem::get_Version() callvirt System.Int32 System.Version::get_Major() ldc.i4.6 <null> clt <null> ldc.i4.0 <null> ceq <null> stloc.1 <null> ldloc.1 <null> brfalse.s IL_0071: nop call System.Boolean 7ayYdkX3.dg6Gb1::ac7EwRn() pop <null> nop <null> nop <null> call System.Boolean 7ayYdkX3.dg6Gb1::Zd6c1Aszkm3S() ldc.i4.0 <null> ceq <null> stloc.2 <null> ldloc.2 <null> brfalse.s IL_0080: nop br.s IL_00B6: ret nop <null> nop <null> call System.Void 7ayYdkX3.dg6Gb1::Swe3yW4pi2dNpx() nop <null> leave.s IL_00AF: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.3 <null> nop <null> ldstr Application failed to start: ldloc.3 <null> callvirt System.String System.Exception::get_Message() call System.String System.String::Concat(System.String,System.String) call System.Void 7ayYdkX3.dg6Gb1::Nbs73jA(System.String) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00AF: nop nop <null> call System.Void System.Windows.Forms.Application::Exit() nop <null> ret <null>
Module Name

7ayYdkX3
Full Name

7ayYdkX3
EntryPoint

System.Void 7ayYdkX3.dg6Gb1::9jyDK7fcdMq64t()
Scope Name

7ayYdkX3
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

7ayYdkX3
Assembly Version

1.17.7.157
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

2241
Main Method

System.Void 7ayYdkX3.dg6Gb1::9jyDK7fcdMq64t()
Main IL Instruction Count

73
Main IL

nop <null> ldtoken System.Windows.Forms.Application call System.Type System.Type::GetTypeFromHandle(System.RuntimeTypeHandle) stloc.0 <null> ldloc.0 <null> ldstr EnableVisualStyles ldc.i4.s 24 callvirt System.Reflection.MethodInfo System.Type::GetMethod(System.String,System.Reflection.BindingFlags) ldnull <null> ldnull <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> ldloc.0 <null> ldstr SetCompatibleTextRenderingDefault ldc.i4.s 24 callvirt System.Reflection.MethodInfo System.Type::GetMethod(System.String,System.Reflection.BindingFlags) ldnull <null> ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> ldc.i4.0 <null> box System.Boolean stelem.ref <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> call System.OperatingSystem System.Environment::get_OSVersion() callvirt System.Version System.OperatingSystem::get_Version() callvirt System.Int32 System.Version::get_Major() ldc.i4.6 <null> clt <null> ldc.i4.0 <null> ceq <null> stloc.1 <null> ldloc.1 <null> brfalse.s IL_0071: nop call System.Boolean 7ayYdkX3.dg6Gb1::ac7EwRn() pop <null> nop <null> nop <null> call System.Boolean 7ayYdkX3.dg6Gb1::Zd6c1Aszkm3S() ldc.i4.0 <null> ceq <null> stloc.2 <null> ldloc.2 <null> brfalse.s IL_0080: nop br.s IL_00B6: ret nop <null> nop <null> call System.Void 7ayYdkX3.dg6Gb1::Swe3yW4pi2dNpx() nop <null> leave.s IL_00AF: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.3 <null> nop <null> ldstr Application failed to start: ldloc.3 <null> callvirt System.String System.Exception::get_Message() call System.String System.String::Concat(System.String,System.String) call System.Void 7ayYdkX3.dg6Gb1::Nbs73jA(System.String) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00AF: nop nop <null> call System.Void System.Windows.Forms.Application::Exit() nop <null> ret <null>
216a90a2da1fa7db906d84bc4d31e968 (1.01 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙