Suspicious
Suspect

31f77b1bc5a8b868fa8073ddb6cad532

PE Executable
|
MD5: 31f77b1bc5a8b868fa8073ddb6cad532
|
Size: 3.22 MB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
31f77b1bc5a8b868fa8073ddb6cad532
Sha1
09ca03fe0b1866c4624e5b029bc8f33ba1a064bd
Sha256
30df94c4a321c1459296fbbb1efb2bd42e178a64fc0cfce897ec1e1bc27b7e47
Sha384
fd1c182afc482d70b0f582b04cb0f107a89a7ec73f4dc5b66093cb3a34ee8a9caed31e19436b54e260c6b8b0ac498c85
Sha512
f75cfa1bf9ade1c14ac851da5c8c7699adf76a3bc130caabdcd0d00e92774400c425bbf79925fb6ff0b7362aad4bd159a016f3f52945b802b557f9bbf4ad1eea
SSDeep
98304:ZOr04KYJiDNkscfhaGNalvBoECau4IzYDFos:ZE04KLqsccp2d0p
TLSH
3EE5CFCED61386BDDEB129B24C8E2470811E15CB9AB6C1F25BDD1A30D6DDFC18C5926C

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
31f77b1bc5a8b868fa8073ddb6cad532
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Informations
Name
 Value
Module Name

Lhfpdjud.exe
Full Name

Lhfpdjud.exe
EntryPoint

System.Void Lhfpdjud.Creations.SingletonExplorer::FillSingleton()
Scope Name

Lhfpdjud.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Lhfpdjud
Assembly Version

1.0.1393.3506
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

21
Main Method

System.Void Lhfpdjud.Creations.SingletonExplorer::FillSingleton()
Main IL Instruction Count

2
Main IL

call System.Void Lhfpdjud.Tagging.GenericTag::LabelLiteralTag() ret <null>
Module Name

Lhfpdjud.exe
Full Name

Lhfpdjud.exe
EntryPoint

System.Void Lhfpdjud.Creations.SingletonExplorer::FillSingleton()
Scope Name

Lhfpdjud.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Lhfpdjud
Assembly Version

1.0.1393.3506
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

21
Main Method

System.Void Lhfpdjud.Creations.SingletonExplorer::FillSingleton()
Main IL Instruction Count

2
Main IL

call System.Void Lhfpdjud.Tagging.GenericTag::LabelLiteralTag() ret <null>
Artefacts
Name
 Value
Embedded Resources

1
Suspicious Type Names (1-2 chars)

0
31f77b1bc5a8b868fa8073ddb6cad532 (3.22 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙