Suspect
3188799f2f93494613a630a20bceb760
PE Executable | MD5: 3188799f2f93494613a630a20bceb760 | Size: 753.15 KB | application/x-dosexec
PE Executable
MD5: 3188799f2f93494613a630a20bceb760
Size: 753.15 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 3188799f2f93494613a630a20bceb760
|
| Sha1 | 2534228f9ad8a48eb44654e747a0c97877f38006
|
| Sha256 | 0d41bec1e1df871d2a73908ea7f03498e78f8f75a65e87a7d863e333e1d4e65f
|
| Sha384 | bdd1711e48d71fce7dfe79cc2cd23b60cfff535f0774658cdf351650a4d7f0dc709bd56e670289b80a81b589e98ed281
|
| Sha512 | d4377fd6f803ca70abbb9cd3c8f75acef1a18f08cc28ddef8cbc1f353b6cfbd6c10180a147fd130c21843136fe022663f1193083e4758fbb21e841aff153832e
|
| SSDeep | 12288:ksjZm3qxUwQD3QzWcqUhXwFrZ2Ji6W8JEKabGPmx2OuztIEgK4C8YJcoXcTZwNp:kVOU18nXIryi6W8J1kG+JDscoXc+
|
| TLSH | 5EF402593369DD02E6A16BF10CB0D3B817795E897970D3529EFA7CEBB83A7C02C90152
|
File Structure
3188799f2f93494613a630a20bceb760
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
BackupManager.Forms.MainForm.resources
BackupManager.Properties.Resources.resources
AUDI
[NBF]root.Data
hgzj
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: TymK.pdb |
| Module Name | TymK.exe |
| Full Name | TymK.exe |
| EntryPoint | System.Void BackupManager.Program::Main() |
| Scope Name | TymK.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | TymK |
| Assembly Version | 3.7.2.4 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 188 |
| Main Method | System.Void BackupManager.Program::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void BackupManager.Forms.MainForm::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
3188799f2f93494613a630a20bceb760 (753.15 KB)
File Structure
3188799f2f93494613a630a20bceb760
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
BackupManager.Forms.MainForm.resources
BackupManager.Properties.Resources.resources
AUDI
[NBF]root.Data
hgzj
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.