Suspect
2be45b680192fe8d217eca52ac1d1c6d
PE Executable | MD5: 2be45b680192fe8d217eca52ac1d1c6d | Size: 727.04 KB | application/x-dosexec
PE Executable
MD5: 2be45b680192fe8d217eca52ac1d1c6d
Size: 727.04 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Very low
|
Hash | Hash Value |
|---|---|
| MD5 | 2be45b680192fe8d217eca52ac1d1c6d
|
| Sha1 | 130a6183f9844a963c0b9c78c3fd74e03fd26995
|
| Sha256 | 2d769adf67702dc9b6b6502c237013557cda9848d3d11de25ea30031c368e895
|
| Sha384 | aa3d84d39903077ffe61f1ad12021ad4898efd4621ff98872a297284c1f12bc9fbc621375dc033d56602c05e350e9cc5
|
| Sha512 | 18f7f79169d0f86042eda490e1f5bbaaf19a9ed2092735acbc8c229538888ed230e6b1f44655854c9b28027b763367b1f527cf4be6acecdd152c345b425ca1b7
|
| SSDeep | 12288:O3N5y+0xSxOWIB3ygEF3twc7880WnEdSMF6G7f35gDqKjl9KhP0UNK7ODC:SN5yRSx23EF3r78SnuSMFWWKhshP0iN
|
| TLSH | 91F412AE65A4C71AD45873B155B6FB7A13BD0C9AEA00E30EDBE99DCF391F16114083C2
|
PeID
Microsoft Visual C++ DLL
Microsoft Visual C++ v6.0
File Structure
2be45b680192fe8d217eca52ac1d1c6d
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rsrc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
Cycle_Jump_Game.Form1.resources
Cycle_Jump_Game.Main.resources
$this.Icon
[NBF]root.IconData
PIP
[NBF]root.Data
timer1.TrayLocation
Cycle_Jump_Game.Properties.Resources.resources
qRGi
[NBF]root.Data
[NBF]root.Data-preview.png
t1
[NBF]root.Data
[NBF]root.Data-preview.png
t2
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Module Name | BIUU.exe |
| Full Name | BIUU.exe |
| EntryPoint | System.Void Cycle_Jump_Game.More::Main() |
| Scope Name | BIUU.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | BIUU |
| Assembly Version | 0.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 64 |
| Main Method | System.Void Cycle_Jump_Game.More::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void Cycle_Jump_Game.Main::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
Artefacts
|
Name0 | Value |
|---|---|
| PDB Path | BIUU.pdb |
2be45b680192fe8d217eca52ac1d1c6d (727.04 KB)
File Structure
2be45b680192fe8d217eca52ac1d1c6d
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rsrc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
Cycle_Jump_Game.Form1.resources
Cycle_Jump_Game.Main.resources
$this.Icon
[NBF]root.IconData
PIP
[NBF]root.Data
timer1.TrayLocation
Cycle_Jump_Game.Properties.Resources.resources
qRGi
[NBF]root.Data
[NBF]root.Data-preview.png
t1
[NBF]root.Data
[NBF]root.Data-preview.png
t2
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| PDB Path | BIUU.pdb |
2be45b680192fe8d217eca52ac1d1c6d |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.