General
Structural Analysis
Config.0
Yara Rules21
Sync
Community
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 2ed04797bc5b356ede0e4e95b430e380
|
| Sha1 | 80e7f7098e89518d3bbdffa41d502996545306d5
|
| Sha256 | 72e6257648e70a1400c5458cdf405c74cce4079226453e864f018c00147b9624
|
| Sha384 | 17b59256a70240b55fadf52a30bf2d4c5d74a5da6c10bf2e5e3dc655cfaf17a242b6368d91c67a58c151cf96f3478972
|
| Sha512 | cd9381503d7e20074eceb0abecd1c76b01849649bce2213a201d1745692095ad7339f096b98e53e5415cb8cc5e7a523001fbf75a851b7593cf15f19a830d8d66
|
| SSDeep | 12288:j0OWdUpwR/UqiYgkRBpDS9+ciVsuWR+5nBngbrsQMQmvFU:J+lUWVSMH8UnBgax
|
| TLSH | E6E41259669AD503E1F207741DF0D3B4677C7EDAA421C30F8AEABCEB7D162807981392
|
File Structure
2ed04797bc5b356ede0e4e95b430e380
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
TypeTester.Properties.Resources.resources
KS
[NBF]root.Data
nJuk
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: nTbk.pdb |
| Module Name | nTbk.exe |
| Full Name | nTbk.exe |
| EntryPoint | System.Void TypeTester.Program::Main() |
| Scope Name | nTbk.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | nTbk |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 99 |
| Main Method | System.Void TypeTester.Program::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void TypeTester.MainForm::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
2ed04797bc5b356ede0e4e95b430e380 (721.92 KB)
File Structure
2ed04797bc5b356ede0e4e95b430e380
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
TypeTester.Properties.Resources.resources
KS
[NBF]root.Data
nJuk
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.