Suspect
260614bcbe9b8a8afb7237aa67097a0d
PE Executable | MD5: 260614bcbe9b8a8afb7237aa67097a0d | Size: 585.22 KB | application/x-dosexec
PE Executable
MD5: 260614bcbe9b8a8afb7237aa67097a0d
Size: 585.22 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Very high
|
Hash | Hash Value |
|---|---|
| MD5 | 260614bcbe9b8a8afb7237aa67097a0d
|
| Sha1 | 94caddc1d1a32fefb5f2c61a0fcf6fb89d1e7693
|
| Sha256 | b1bbf1cbc19895372073a801b3c5980b1e7270ceb1813da42bec3c9fd38c67d7
|
| Sha384 | 856f7f3c9b0842b7b66fb71b11767ea7d561e94409166899c3324a7375771b90a72d8cdacd43b54a62b0adf45011de44
|
| Sha512 | f510bddb4ded7d5ae6681208929ea2b5e498e8a428421528f6aab57fbc1171e493051422af8267370d04022219e2653da297ed5b77f91749da266613cc1bbbaf
|
| SSDeep | 12288:av5iv+xCkOWgWF3QCINm02vfNfjUgNN3pBgkf2hX1JGvr5:aG+PhF3Gm9v1ff/5BgkfiW
|
| TLSH | A3C4230ED32FD89AC6E7CB37E4D5F7980569A4D400BFCA757088A2502539F9C8DA25BC
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
260614bcbe9b8a8afb7237aa67097a0d
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Arxzvnupo.Properties.Resources.resources
Rqhtjxmo
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | Arxzvnupo.exe |
| Full Name | Arxzvnupo.exe |
| EntryPoint | System.Void Arxzvnupo.Hwjgrjxjol::Main() |
| Scope Name | Arxzvnupo.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Arxzvnupo |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 6 |
| Main Method | System.Void Arxzvnupo.Hwjgrjxjol::Main() |
| Main IL Instruction Count | 3 |
| Main IL | call System.Boolean PXSLXCvP27AvOjtSRd.mo49TLWJqSPppOVmb6::HfpbdtCY2() pop <null> ret <null> |
| Module Name | Arxzvnupo.exe |
| Full Name | Arxzvnupo.exe |
| EntryPoint | System.Void Arxzvnupo.Hwjgrjxjol::Main() |
| Scope Name | Arxzvnupo.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Arxzvnupo |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 6 |
| Main Method | System.Void Arxzvnupo.Hwjgrjxjol::Main() |
| Main IL Instruction Count | 3 |
| Main IL | call System.Boolean PXSLXCvP27AvOjtSRd.mo49TLWJqSPppOVmb6::HfpbdtCY2() pop <null> ret <null> |
260614bcbe9b8a8afb7237aa67097a0d (585.22 KB)
File Structure
260614bcbe9b8a8afb7237aa67097a0d
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Arxzvnupo.Properties.Resources.resources
Rqhtjxmo
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.