General
Structural Analysis
Config.0
Yara Rules0
Sync
Community
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 2f9cf0ff7636d59dcd2724044dcb7685
|
| Sha1 | 30d3faa55a10be7e2d9032079375d5b0bf750633
|
| Sha256 | 08eadd57e12b933440c0b38d853ed90c2e5b0363e4301d8381c829ec53e85f9a
|
| Sha384 | d8b452bca7154851772a43c63bd71eb3911cf1e2f90199db9d455a5f7a3df9141d411fa2ea8ec3df6fd4d41589d6d78c
|
| Sha512 | 184fa5d24784590eb46dcab7a895127f75a0de207d405611f885f938b1fb56dcf6e7db364d3397cd85095566b30797fd0dc8a3214bf37790bc456159ff1584ba
|
| SSDeep | 6144:HDAMVZ7B2aAlKyD7tOFWx5495NJJY6O51NIoicl0RyM3c+HyE:jAUB1wKuQFS65Y353IKl073WE
|
| TLSH | EEA49E52FB906DFCD257D07886924562A932B8890B21B6EF125857241F36AEF1F3CF1C
|
PeID
Microsoft Visual C++ 8.0 (DLL)
Microsoft Visual C++ v6.0 DLL
File Structure
2f9cf0ff7636d59dcd2724044dcb7685
[Authenticode]_05dd719a.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.fptable
.reloc
.rsrc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
ID:0-preview.png
ID:0005
ID:0
ID:0006
ID:0
ID:0007
ID:0
ID:0008
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | Authenticode present at 0x71C00 size 7480 bytes |
| Info | PDB Path: najjaci_sam.pdb |
2f9cf0ff7636d59dcd2724044dcb7685 (473.4 KB)
File Structure
2f9cf0ff7636d59dcd2724044dcb7685
[Authenticode]_05dd719a.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.fptable
.reloc
.rsrc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
ID:0-preview.png
ID:0005
ID:0
ID:0006
ID:0
ID:0007
ID:0
ID:0008
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.