376809d4de1459576198b40a875a5114

PE Executable
|
MD5: 376809d4de1459576198b40a875a5114
|
Size: 2.88 MB
|
application/x-dosexec

Summary by MalvaGPT

Characteristics

Hash	Hash Value
MD5	376809d4de1459576198b40a875a5114
Sha1	8889ce674618564846048cd46d25a8fc051cbed5
Sha256	7fc90f92f50d98b3bc737f0de1fd17c2f24ae9a72fa2ddbb67c55f8dd73d700d
Sha384	593b58ac0fc96aeb529b2285f901787e2a531e4474e30e500ca0a866590f2ce5a952e2e994138103b511a69504ec050f
Sha512	6e1b725cd46e8f9263ad663b9a5477b6a0766a6d1dffb9f84b26dcd04b7fe92eecdb252c0d38c7b63bf6ee27d9b9be3de93bd62b3f419be5ec19eccdd2ee378a
SSDeep	6144:3FBCIG0+U15EFpT/bpDI3S/7866KKfxwAtYSRY0LxP6:10f3o5KpT/bG3K6BJtYSY
TLSH	E8D56A3DDE18112ED2B7D23DD1864906E8D84F6F223CAC4651C73E4B685A542B8AB3DF

PeID

Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL

Microsoft Visual Studio .NET

File Structure

Informations

Name0	Value
Info	PE Detect: PeReader OK (file layout)
Module Name	Qia65nWr
Full Name	Qia65nWr
EntryPoint	System.Void Qia65nWr.4r_BP0xy1a::dCt4E3jk9dBnaR()
Scope Name	Qia65nWr
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	Qia65nWr
Assembly Version	25.7.39.209
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	16
Main Method	System.Void Qia65nWr.4r_BP0xy1a::dCt4E3jk9dBnaR()
Main IL Instruction Count	77
Main IL	nop <null> newobj System.Void Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::.ctor() stloc.0 <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> newobj System.Void Qia65nWr.Pjr2gQ6ps7j::.ctor() dup <null> ldc.i4.s 100 ldc.i4 200 newobj System.Void System.Drawing.Size::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Control::set_Size(System.Drawing.Size) nop <null> stloc.1 <null> ldloc.0 <null> newobj System.Void Qia65nWr.4r_BP0xy1a::.ctor() dup <null> ldc.i4 1000 ldc.i4 500 newobj System.Void System.Drawing.Size::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Form::set_Size(System.Drawing.Size) nop <null> stfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji ldloc.1 <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Int32 System.Windows.Forms.Control::get_Width() conv.r8 <null> ldc.r8 2 div <null> ldloc.1 <null> callvirt System.Int32 System.Windows.Forms.Control::get_Width() conv.r8 <null> ldc.r8 2 div <null> sub <null> call System.Double System.Math::Round(System.Double) conv.ovf.i4 <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Int32 System.Windows.Forms.Control::get_Height() conv.r8 <null> ldc.r8 2 div <null> ldloc.1 <null> callvirt System.Int32 System.Windows.Forms.Control::get_Height() conv.r8 <null> ldc.r8 2 div <null> sub <null> call System.Double System.Math::Round(System.Double) conv.ovf.i4 <null> newobj System.Void System.Drawing.Point::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Control::set_Location(System.Drawing.Point) nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Windows.Forms.Control/ControlCollection System.Windows.Forms.Control::get_Controls() callvirt System.Void System.Windows.Forms.Control/ControlCollection::Clear() nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Windows.Forms.Control/ControlCollection System.Windows.Forms.Control::get_Controls() ldloc.1 <null> callvirt System.Void System.Windows.Forms.Control/ControlCollection::Add(System.Windows.Forms.Control) nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji ldloc.0 <null> ldftn System.Void Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::mBr72aF(System.Object,System.EventArgs) newobj System.Void System.EventHandler::.ctor(System.Object,System.IntPtr) callvirt System.Void System.Windows.Forms.Form::add_Load(System.EventHandler) nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null>
Module Name	Qia65nWr
Full Name	Qia65nWr
EntryPoint	System.Void Qia65nWr.4r_BP0xy1a::dCt4E3jk9dBnaR()
Scope Name	Qia65nWr
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	Qia65nWr
Assembly Version	25.7.39.209
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	16
Main Method	System.Void Qia65nWr.4r_BP0xy1a::dCt4E3jk9dBnaR()
Main IL Instruction Count	77
Main IL	nop <null> newobj System.Void Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::.ctor() stloc.0 <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> newobj System.Void Qia65nWr.Pjr2gQ6ps7j::.ctor() dup <null> ldc.i4.s 100 ldc.i4 200 newobj System.Void System.Drawing.Size::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Control::set_Size(System.Drawing.Size) nop <null> stloc.1 <null> ldloc.0 <null> newobj System.Void Qia65nWr.4r_BP0xy1a::.ctor() dup <null> ldc.i4 1000 ldc.i4 500 newobj System.Void System.Drawing.Size::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Form::set_Size(System.Drawing.Size) nop <null> stfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji ldloc.1 <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Int32 System.Windows.Forms.Control::get_Width() conv.r8 <null> ldc.r8 2 div <null> ldloc.1 <null> callvirt System.Int32 System.Windows.Forms.Control::get_Width() conv.r8 <null> ldc.r8 2 div <null> sub <null> call System.Double System.Math::Round(System.Double) conv.ovf.i4 <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Int32 System.Windows.Forms.Control::get_Height() conv.r8 <null> ldc.r8 2 div <null> ldloc.1 <null> callvirt System.Int32 System.Windows.Forms.Control::get_Height() conv.r8 <null> ldc.r8 2 div <null> sub <null> call System.Double System.Math::Round(System.Double) conv.ovf.i4 <null> newobj System.Void System.Drawing.Point::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Control::set_Location(System.Drawing.Point) nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Windows.Forms.Control/ControlCollection System.Windows.Forms.Control::get_Controls() callvirt System.Void System.Windows.Forms.Control/ControlCollection::Clear() nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji callvirt System.Windows.Forms.Control/ControlCollection System.Windows.Forms.Control::get_Controls() ldloc.1 <null> callvirt System.Void System.Windows.Forms.Control/ControlCollection::Add(System.Windows.Forms.Control) nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji ldloc.0 <null> ldftn System.Void Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::mBr72aF(System.Object,System.EventArgs) newobj System.Void System.EventHandler::.ctor(System.Object,System.IntPtr) callvirt System.Void System.Windows.Forms.Form::add_Load(System.EventHandler) nop <null> ldloc.0 <null> ldfld Qia65nWr.4r_BP0xy1a Qia65nWr.4r_BP0xy1a/Cwr34Asy.3Qcrjk7ZEdn2::Dac54Rwji call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null>

376809d4de1459576198b40a875a5114 (2.88 MB)

File Structure

Characteristics

No malware configuration were found at this point.

You must be signed in to post a comment.

376809d4de1459576198b40a875a5114

PE Executable | MD5: 376809d4de1459576198b40a875a5114 | Size: 2.88 MB | application/x-dosexec

PE Executable
|
MD5: 376809d4de1459576198b40a875a5114
|
Size: 2.88 MB
|
application/x-dosexec