Malicious
2a406e658986416c2eaf6574a1be2105
AutoIt Compiled Script | MD5: 2a406e658986416c2eaf6574a1be2105 | Size: 1.69 MB | application/x-dosexec
AutoIt Compiled Script
MD5: 2a406e658986416c2eaf6574a1be2105
Size: 1.69 MB
application/x-dosexec
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 2a406e658986416c2eaf6574a1be2105
|
| Sha1 | a1d8f9644a6846cdcdf1be4b44a4298cb3a06d41
|
| Sha256 | e580f3d3478aac248c17aec605c37c52882b5e3132f2786c9aec86948710a9c1
|
| Sha384 | c40904b1a6580ad390684c3e024f42b1c2b5053ab47b6fddf49cf3a53304e591ed766889365a351f7789dc0a68a04a29
|
| Sha512 | 4b960e3023f747bc264ee5589cf450c910db72d57621276bb702eede18f425c0b05cb7edf0b6d00b1013d26681abf8bb7b0cf4d2c7f0b95a0bc3741ee4e97ee6
|
| SSDeep | 24576:F5EmXFtKaL4/oFe5T9yyXYfP1MAXDz3TjUIhQXBxTBzg5Ofzu+:FPVt/LZeJbInGizDjUxXBbM5W
|
| TLSH | E775AE023381CF22FE5F5172CA56E2F1577B6E11CD13A7DF12983D79B9B01A1062A6A3
|
PeID
Microsoft Visual C++ 6.0 DLL (Debug)
Microsoft Visual C++ 8
Microsoft Visual C++ 8
Microsoft Visual C++ v6.0 DLL
VC8 -> Microsoft Corporation
File Structure
2a406e658986416c2eaf6574a1be2105
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:2057
ID:0002
ID:2057
ID:0003
ID:2057
ID:0004
ID:2057
ID:0005
ID:2057
ID:0006
ID:2057
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
RT_MENU
ID:00A6
ID:2057
RT_STRING
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
ID:000A
ID:2057
ID:000B
ID:2057
ID:000C
ID:2057
ID:0139
ID:2057
RT_RCDATA
ID:0000
RT_GROUP_CURSOR4
ID:0063
ID:2057
ID:00A2
ID:2057
ID:00A4
ID:2057
ID:00A9
ID:2057
RT_VERSION
ID:0001
ID:2057
RT_MANIFEST
ID:0001
ID:2057
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
2a406e658986416c2eaf6574a1be2105 (1.69 MB)
File Structure
2a406e658986416c2eaf6574a1be2105
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:2057
ID:0002
ID:2057
ID:0003
ID:2057
ID:0004
ID:2057
ID:0005
ID:2057
ID:0006
ID:2057
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
RT_MENU
ID:00A6
ID:2057
RT_STRING
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
ID:000A
ID:2057
ID:000B
ID:2057
ID:000C
ID:2057
ID:0139
ID:2057
RT_RCDATA
ID:0000
RT_GROUP_CURSOR4
ID:0063
ID:2057
ID:00A2
ID:2057
ID:00A4
ID:2057
ID:00A9
ID:2057
RT_VERSION
ID:0001
ID:2057
RT_MANIFEST
ID:0001
ID:2057
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.