Suspicious
Suspect

2bc552a1f8cb995775c8121b476dcdd9

VB5/6 Executable
|
MD5: 2bc552a1f8cb995775c8121b476dcdd9
|
Size: 8.1 MB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
2bc552a1f8cb995775c8121b476dcdd9
Sha1
29faa90d20222e118d0cd3a01e2d0dddb3c2f914
Sha256
1ee19ca2ed68e72acdb37d1c30bef464a330f66156830b61eca61f2dc432b274
Sha384
ffa95006a8694f060efe2dd10c5455f0de4c215b38bbfc4c7f18baea7038b7c881d4e99a8afdf1d7911f5f64dbf5a8ac
Sha512
7c95fc35a1306aef70167634540aca864f8aa0a376ed313ce1bfb1ce11bcde2c46b3c0f639bfa412fd1235604413960667989fff251b81eb4c02d5cf1ef1402b
SSDeep
196608:+kbgJsau4PqC1qLAgz27O7PNYODgH0ZW0dTqnc52V:LbgFu4PqC1qLAgh71rzZJ2nc4
TLSH
7C86E046A3E101F8D5A38238D45A431BF7B1741907719BCF33D44A522F63AE2AE7E729

PeID

Microsoft Visual Basic v5.0 - v6.0
Microsoft Visual C++ v6.0 DLL
Pe123 v2006.4.4-4.12
UPolyX 0.3 -> delikon
File Structure
2bc552a1f8cb995775c8121b476dcdd9
Overlay_f15cacb2.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.rsrc
Resources
RT_ICON
ID:7531
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
VB6 Structure
VB Header
VB VBAProject Info
VB Object Table
VB VBAProject Info 2
VB Register Info
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

Overlay extracted: Overlay_f15cacb2.bin (7972937 bytes)
2bc552a1f8cb995775c8121b476dcdd9 (8.1 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙