Malicious
Malicious

34fceaa6c192e585feb1d37563f284f6

PE Executable
|
MD5: 34fceaa6c192e585feb1d37563f284f6
|
Size: 2.91 MB
|
application/x-dosexec

Print
Infection Chain
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
34fceaa6c192e585feb1d37563f284f6
Sha1
7c89f5451453bb3dbdd6bb054fbe034a5ca09ddd
Sha256
d540e07cb7ddc6329f581ad9135190552040a7601020a68ac58c4d702821cd24
Sha384
a22da0da16a4ae667a74fcb6504fcfb1425803d1db43b6a82d210fe254d0741d4a64a6c8b844461ae04742e8bd37e1d9
Sha512
2c777c5162f2428e3bd7270902b7f4a0a79c283bfdc9ad18be81bcf80fb5c7bff103d5f023a44f090e016c35cf94ee88ab6d85aa2bb66d1f63cb6aae2f3b43bf
SSDeep
49152:lj3Yv0zatSUXHxJzP4h7r2iJ53sskJ2otak+FgnzcD4q:d3V+X3nQhl5yJ2ot6Mc
TLSH
D8D5D0027E84CE11F0591233C6EF454847B4A9526AF6E32B7CBA376E55123A77C0E9CB

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
34fceaa6c192e585feb1d37563f284f6
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.sdata
.rsrc
.reloc
Resources
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
.Net Resources
UvokIws9qD7wI1P4o6.JDKiOWkJkGxPDIOPDh
sE4McdP0anl3ADQgBO.yBnsXe1LsyZEZtkch7
Informations
Name
 Value
Module Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Full Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
EntryPoint

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Scope Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

uJelwpMlXUAqOzq5ugg9
Assembly Version

5.8.3.8
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

63
Main Method

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Main IL Instruction Count

14
Main IL

br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void fO9Or3s74kyUJeGRJVc.tevY50sVPryGcxTYmGd::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::wcmr4Vqnvi callvirt System.Void P08WQPJVa2N8wF7cdRu.aYE94BJtBXfjOALdNNP::KWTCVk02yV() nop <null> ret <null>
Module Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Full Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
EntryPoint

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Scope Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

uJelwpMlXUAqOzq5ugg9
Assembly Version

5.8.3.8
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

63
Main Method

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Main IL Instruction Count

14
Main IL

br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void fO9Or3s74kyUJeGRJVc.tevY50sVPryGcxTYmGd::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::wcmr4Vqnvi callvirt System.Void P08WQPJVa2N8wF7cdRu.aYE94BJtBXfjOALdNNP::KWTCVk02yV() nop <null> ret <null>
34fceaa6c192e585feb1d37563f284f6 (2.91 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙