Malicious
Malicious

39dcb6ca3a3077fc939ddb7eb5f1d1e1

PE Executable
|
MD5: 39dcb6ca3a3077fc939ddb7eb5f1d1e1
|
Size: 847.36 KB
|
application/x-dosexec

Print
General
Structural Analysis
Config.0
Yara Rules32
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
39dcb6ca3a3077fc939ddb7eb5f1d1e1
Sha1
488ac0e2baf1ab4e057218bd302895dc4fb3d254
Sha256
32f9509a9a48373f81cf96263f3d39978af984e5515274639c5cdc122b68b0ab
Sha384
4d53b456427b10247a8bc30af09b08e264928831c1d46e53a531e982f95ae6dd6a664546595e10f0d0159ed1138b3d5a
Sha512
da28decc1e9ed1f0e32f7a082398088b12bf5530cb81094a750f9d9273de3a6cd7d634537b7037ed1cb20e1eb1c1d12e3f609a9c46ded19f0a2fcd5d3bab4a54
SSDeep
12288:d48VrXIz4FGLYfg6kwnOWDwfNQgF7CDCm5Jz8cxLMrGkO:Br4z4ELYHkwO2wlBm5JhBMr9O
TLSH
E005E6027F54CA02F5191237E2EF854847B0D85166AAE31B7DBE376E95123A73C0DACB

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
39dcb6ca3a3077fc939ddb7eb5f1d1e1
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.sdata
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
.Net Resources
jeUAsLFTrQVt0jyjVO.k55h5g0okJKR7mF4Ts
dbeSTdmNlGNIlZtfq0.fWymvja8bFNE71D2KZ
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

EMGdwEG4NLRMoqd4JeLOM7cClFaxEerxT16gSkP
Full Name

EMGdwEG4NLRMoqd4JeLOM7cClFaxEerxT16gSkP
EntryPoint

System.Void lBipsnF7GdIe14yTsia.bwQ1F2Fj7Bp0pR4U97a::D0GC3snYuL()
Scope Name

EMGdwEG4NLRMoqd4JeLOM7cClFaxEerxT16gSkP
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

PdJbNw1kuiUR
Assembly Version

3.6.6.1
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

63
Main Method

System.Void lBipsnF7GdIe14yTsia.bwQ1F2Fj7Bp0pR4U97a::D0GC3snYuL()
Main IL Instruction Count

14
Main IL

br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void VySqG9pNWmuhvU1aySI.Fx3JhwpklR6inh3tdDt::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object lBipsnF7GdIe14yTsia.bwQ1F2Fj7Bp0pR4U97a::SisCU3NNqe callvirt System.Void P1HKBYFksNRfGa0gmiH.R7HsnPF10GRiylwWlhi::HXd0bLe7Nn() nop <null> ret <null>
Module Name

EMGdwEG4NLRMoqd4JeLOM7cClFaxEerxT16gSkP
Full Name

EMGdwEG4NLRMoqd4JeLOM7cClFaxEerxT16gSkP
EntryPoint

System.Void lBipsnF7GdIe14yTsia.bwQ1F2Fj7Bp0pR4U97a::D0GC3snYuL()
Scope Name

EMGdwEG4NLRMoqd4JeLOM7cClFaxEerxT16gSkP
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

PdJbNw1kuiUR
Assembly Version

3.6.6.1
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

63
Main Method

System.Void lBipsnF7GdIe14yTsia.bwQ1F2Fj7Bp0pR4U97a::D0GC3snYuL()
Main IL Instruction Count

14
Main IL

br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void VySqG9pNWmuhvU1aySI.Fx3JhwpklR6inh3tdDt::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object lBipsnF7GdIe14yTsia.bwQ1F2Fj7Bp0pR4U97a::SisCU3NNqe callvirt System.Void P1HKBYFksNRfGa0gmiH.R7HsnPF10GRiylwWlhi::HXd0bLe7Nn() nop <null> ret <null>
39dcb6ca3a3077fc939ddb7eb5f1d1e1 (847.36 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙