Suspicious
Suspect

28b8e12e8d38be21a3be8a9d20b6c33d

VB5/6 Executable
|
MD5: 28b8e12e8d38be21a3be8a9d20b6c33d
|
Size: 423.62 KB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
28b8e12e8d38be21a3be8a9d20b6c33d
Sha1
5992290e82a4f678f0df7dca42e300bc6bd7079a
Sha256
96611251f36fb46e3588c6fbb04f25082ddefe8a04b58986197d68e41720ea22
Sha384
eff32cb3973591ae6cd142171d8453de1ed202a4122f5476f2fe0d3c5feec49d7ee874133db2734afb982f501f144f03
Sha512
1e209ae84a286faf46974aef7419a958761e25014a3e24f2036a967ec4480b67004d4e992a1368cc9baff0e7e5bf89cededa783727e22be9fdece01a2fe83cba
SSDeep
12288:4ENN+T5xYrllrU7QY6Rqmcccccccccccccccccccccccccccccccccccccccccc/:E5xolYQY6Ie
TLSH
FC944B6BB990210FD0AFE7F424519257B6252E21AB508E4F6782FB547172203F3FA21F

PeID

Microsoft Visual Basic v5.0 - v6.0
Private EXE Protector V2.30-V2.3X -> SetiSoft Team
Protect Shareware V1.1 -> eCompserv CMS
File Structure
28b8e12e8d38be21a3be8a9d20b6c33d
Overlay_4d259ea7.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.rsrc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
VB6 Structure
VB Header
VB VBAProject Info
VB Object Table
VB VBAProject Info 2
VB Register Info
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

Overlay extracted: Overlay_4d259ea7.bin (46783 bytes)
28b8e12e8d38be21a3be8a9d20b6c33d (423.62 KB)
File Structure
28b8e12e8d38be21a3be8a9d20b6c33d
Overlay_4d259ea7.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.rsrc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
VB6 Structure
VB Header
VB VBAProject Info
VB Object Table
VB VBAProject Info 2
VB Register Info
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙