General
Structural Analysis
Config.0
Yara Rules25
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
Symbol Obfuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 309c63c708c1378da092f1872627c4c6
|
| Sha1 | fa0ad6ba38f5a18e03116e1c65912a8177ec1df5
|
| Sha256 | 0d0ca60de1f5d8df133af2387d3d503ecfdad02fc2daf1ad5ceb3d1124d24336
|
| Sha384 | 881771e0a0ad38819551eb52df039f7bc52a8618dd5af5c3074a0ce770f1ac1972441c6c49eee8d13c3b38b96017d210
|
| Sha512 | 3c81499f2613372b7b82a535b343adcc9e08db25b81d3e5eb07158f4fdd5af8b76c41d92e0cd85873d4bfd0122f7a873dd4bcb85f23003a8a661ad7d1267eda7
|
| SSDeep | 6144:Lhxz6DKlZod0d2JpqgWAiw4smnNdNIGBMv6AJlulFZ1ghKM0Xp9ZkmQE2I/23hVW:Lvftq4smnHNIAscrZkWR4hVucQOUdW
|
| TLSH | A105180673858E52D12A1332C1E70C0087F7A68A776BD71F7A86676968833DEDF06397
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
309c63c708c1378da092f1872627c4c6
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
BW7MtqcpgVJIeBcCfV.DdcuYIkqRHF5qxdLxd
Q1TR0ZwUvtWrcOFK0P.38AqDhyHuevNd94D0m
2dnj7OjW8H6reoCCkA.BRPuh8lVslj5XnPVKT
u0x8leB4qU9ClDXwO8.E7pcfHpjew25oHnSKl
dKqScKb1w1iGDq6lIO.xjQCRQ7WngHRU30fZS
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | Osnnq.dll |
| Full Name | Osnnq.dll |
| Scope Name | Osnnq.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Osnnq |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 874 |
| Main Method | Not found or no body |
| Module Name | Osnnq.dll |
| Full Name | Osnnq.dll |
| Scope Name | Osnnq.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Osnnq |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 874 |
| Main Method | Not found or no body |
309c63c708c1378da092f1872627c4c6 (808.96 KB)
File Structure
309c63c708c1378da092f1872627c4c6
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
BW7MtqcpgVJIeBcCfV.DdcuYIkqRHF5qxdLxd
Q1TR0ZwUvtWrcOFK0P.38AqDhyHuevNd94D0m
2dnj7OjW8H6reoCCkA.BRPuh8lVslj5XnPVKT
u0x8leB4qU9ClDXwO8.E7pcfHpjew25oHnSKl
dKqScKb1w1iGDq6lIO.xjQCRQ7WngHRU30fZS
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.