General
Structural Analysis
Config.0
Yara Rules11
Sync
Community
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Low
|
Hash | Hash Value |
|---|---|
| MD5 | 2efe44ad9bddbdbadf683d2eb669b3b6
|
| Sha1 | e3d46e92199a8f17f5a70fccbb6982b3d04c5d3a
|
| Sha256 | e354f2ec41ae4b915c485b252c4cee303d5f7c0badd07fd7dba48f9fe9b3367e
|
| Sha384 | c16ce626821a242c24bb628527a8aedd3741d954155348931ef5f11d356ba4315c177e8c029d385f88157b77a5e73aa9
|
| Sha512 | aff489950959b384631754f49b9570d55bfd2a6453a2955058ce85c981809409ae3f0f6b738b3c749d02dfd8ab1151c1bb2a3167bbc5c13ca977afbdfd3f42e6
|
| SSDeep | 12288:VimAXuVpzSq359Dn/ABPiaT+96zwUJNOIEJWhNae:/zS859DIBrU6kUPhEJxe
|
| TLSH | 15C4F10526DA9A0AC4B61FB51A74C17053B53ECEB922EB1B8FD46CDB3D327414A0B74B
|
File Structure
2efe44ad9bddbdbadf683d2eb669b3b6
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
project.Form1.resources
project.Properties.Resources.resources
pro
[NBF]root.Data
qCCX
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: lEXj.pdb |
| Module Name | lEXj.exe |
| Full Name | lEXj.exe |
| EntryPoint | System.Void project.Program::Main() |
| Scope Name | lEXj.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | lEXj |
| Assembly Version | 10.0.6.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 435 |
| Main Method | System.Void project.Program::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void project.MainForm::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
2efe44ad9bddbdbadf683d2eb669b3b6 (571.39 KB)
File Structure
2efe44ad9bddbdbadf683d2eb669b3b6
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
project.Form1.resources
project.Properties.Resources.resources
pro
[NBF]root.Data
qCCX
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.