General
Structural Analysis
Config.0
Yara Rules15
Sync
Community
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 23a44dcb8bdd2592fa369e30733e6771
|
| Sha1 | ff413c31c5b2d4906728e90a25f2e9625d535395
|
| Sha256 | d9368566ecd5ecfdc6a1a3b27386a8451412e1c1003cef4ef4b3418d56bdb703
|
| Sha384 | 0969a586e4b59ab5baa35c1afebc129ee892170ad2a37f26e9103b94f226422d396dd7993bcb15d8cdc5e876927c0e07
|
| Sha512 | e9430d48d7836e282fc0700a7cd334e0815e79b4ea10825a721f2b7f47541171a16740231d5a8dc09039b5bcd9b165d21bcc47cc93c08ae7f3428607ba6b3902
|
| SSDeep | 12288:tKU9Z2LLPQx1gSv5SE1KVLG0WOfF1uHpvfQIBftlJ1k/l7gM1KhofA/imOWJ6v3g:kS2YxiSv5SNU05fF1QQAt3WFt1Ke4//j
|
| TLSH | B7F423835D5F55DE37AE270D99241693D17F4BDBAA02043A6449D102338AA3E1F3F2F6
|
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
UPA_HELPER.AboutBox1.resources
UPE_HELPER.tela_login.resources
$this.Icon
zipa
UPA_HELPER.CadastroPaciente.resources
UPA_HELPER.Properties.Resources.resources
Concluir-Atendimento
Concluir-Atendimento3
cYkm
covid-print
covid-x
covid-xtrans
icon
UPE_HELPER.TelaUPA.resources
$this.Icon
timer1.TrayLocation
Artefacts
|
Name0 | Value |
|---|---|
| PDB Path | AVZc.pdb |
| Embedded Resources | 8 |
| Suspicious Type Names (1-2 chars) | 0 |
23a44dcb8bdd2592fa369e30733e6771 (740.69 KB)
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
UPA_HELPER.AboutBox1.resources
UPE_HELPER.tela_login.resources
$this.Icon
zipa
UPA_HELPER.CadastroPaciente.resources
UPA_HELPER.Properties.Resources.resources
Concluir-Atendimento
Concluir-Atendimento3
cYkm
covid-print
covid-x
covid-xtrans
icon
UPE_HELPER.TelaUPA.resources
$this.Icon
timer1.TrayLocation
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| PDB Path | AVZc.pdb |
23a44dcb8bdd2592fa369e30733e6771 > OC 9851.exe |
| Embedded Resources | 8 |
23a44dcb8bdd2592fa369e30733e6771 > OC 9851.exe |
| Suspicious Type Names (1-2 chars) | 0 |
23a44dcb8bdd2592fa369e30733e6771 > OC 9851.exe |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.