General
Structural Analysis
Config.0
Yara Rules34
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
Symbol Obfuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 3dcad3f2e12bef9641371db7500198f1
|
| Sha1 | 19774c02b3be0ac08dcf6a68d5ed0e51c74eeb1d
|
| Sha256 | 4e5d56ee7752035330278b2a38b429c3c7c6f95b7aee892d8ef4030d325cc92f
|
| Sha384 | 8dc1166378063119e16d732e69e55a27e204548ff743f2c7052f54650e8ef92a319316600f76309d3b45e1827b4a35b1
|
| Sha512 | a08898ae5612b552f3fd2ab111ac3045ad970295da1ab4719181c5e2cd4d83d29e1aed8023db6a3e3d84e9da3e1425baae97152f75517158b521404f4a17401b
|
| SSDeep | 12288:cbj8I6reF7oGma0lcaYq86HmA1I3vbxkC6WiTxe:g6reF7oGm9lcxlvdkvJTx
|
| TLSH | F105280772E98A22E05A1737D5E708008BF6E5827363D70F754523A929437EF9D0BB6B
|
PeID
.NET executable
HQR data file
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
3dcad3f2e12bef9641371db7500198f1
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
oaeETBTNHHkPLvji28.mkSGeD0swumOW6diUn
nOTy2Bif0QhWqFvWOF.jCGIv96TfKPjOAcTTx
bgvdwagyBXWvqqFPPU.God3RmfPv4glJfU6MJ
1XHPWLWVFwL09930kH.MmwWnvrA9VaOLbMmIN
dSrgnOFrHYNruIm0gx.Wd0lKgPgdbx7cgsh1Y
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | Gilikcrxouj.dll |
| Full Name | Gilikcrxouj.dll |
| Scope Name | Gilikcrxouj.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Gilikcrxouj |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 874 |
| Main Method | Not found or no body |
| Module Name | Gilikcrxouj.dll |
| Full Name | Gilikcrxouj.dll |
| Scope Name | Gilikcrxouj.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Gilikcrxouj |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 874 |
| Main Method | Not found or no body |
3dcad3f2e12bef9641371db7500198f1 (798.21 KB)
File Structure
3dcad3f2e12bef9641371db7500198f1
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
oaeETBTNHHkPLvji28.mkSGeD0swumOW6diUn
nOTy2Bif0QhWqFvWOF.jCGIv96TfKPjOAcTTx
bgvdwagyBXWvqqFPPU.God3RmfPv4glJfU6MJ
1XHPWLWVFwL09930kH.MmwWnvrA9VaOLbMmIN
dSrgnOFrHYNruIm0gx.Wd0lKgPgdbx7cgsh1Y
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.