3fe800da8c684a5e50b2824c56b61306

PE Executable
|
MD5: 3fe800da8c684a5e50b2824c56b61306
|
Size: 966.66 KB
|
application/x-dosexec

Summary by MalvaGPT

Characteristics

Hash	Hash Value
MD5	3fe800da8c684a5e50b2824c56b61306
Sha1	e3803a332031773d14b83ecae00533ee1e467e73
Sha256	223850176955ed89a903fa81454768fa0fd69df46f9456ece918058417ffd217
Sha384	c9053e1129b8425a02b574a39c17dc56b0bd09c69686b663afd9779b0be69a807a63c61805ebff95c12d068d2d51d899
Sha512	b153c310822ae8fc477a04fe7e3ce32ddc6ab1a613a6353ebb35eb38288e5ff4dc442ed9e0f88392a11c33aeab2f1e833c31cd683d7af0c1198b022c36c23c9e
SSDeep	12288:G7I61t5eNJ4hQO2RCqVl/iOkEbNZCFkbigczu0Jpixzk5M+YZQUAZ8R:G7INGEVNDEkbgpFUtAqR
TLSH	06257C946BD426A8E6799B78A8351C814BF6F2F6C3F0ED292BD494474F7F3414A212C3

PeID

.NET executable

Microsoft Visual C# / Basic .NET

Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL

Microsoft Visual C# v7.0 / Basic .NET

Microsoft Visual Studio .NET

File Structure

Informations

Name0	Value
Info	PE Detect: PeReader OK (file layout)
Module Name	Sg9ps0
Full Name	Sg9ps0
EntryPoint	System.Void Sg9ps0.Qo8b_Yn50acL::af3YW0rj()
Scope Name	Sg9ps0
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	Sg9ps0
Assembly Version	2.29.18.84
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	1736
Main Method	System.Void Sg9ps0.Qo8b_Yn50acL::af3YW0rj()
Main IL Instruction Count	137
Main IL	nop <null> ldc.r8 0 stloc.0 <null> ldc.i4.0 <null> stloc.s V_4 ldloc.0 <null> ldloc.s V_4 conv.r8 <null> ldc.r8 0.017 mul <null> call System.Double System.Math::Sin(System.Double) ldloc.s V_4 conv.r8 <null> ldc.r8 0.023 mul <null> call System.Double System.Math::Cos(System.Double) mul <null> add <null> stloc.0 <null> ldloc.s V_4 ldc.i4.1 <null> add.ovf <null> stloc.s V_4 ldloc.s V_4 ldc.i4 2000 ble.s IL_000E: ldloc.0 call System.Byte[] Sg9ps0.wCb3ix6::5amNfaR4p9cZH() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stloc.1 <null> ldloc.1 <null> ldlen <null> conv.i4 <null> ldc.i4.1 <null> sub.ovf <null> stloc.s V_5 ldc.i4.0 <null> stloc.s V_6 br.s IL_0084: ldloc.s V_6 ldloc.s V_6 ldc.i4.5 <null> rem <null> ldc.i4.0 <null> ceq <null> stloc.s V_7 ldloc.s V_7 brfalse.s IL_007D: nop ldloc.1 <null> ldloc.s V_6 ldloc.1 <null> ldloc.s V_6 ldelem.u1 <null> ldc.i4 169 xor <null> stelem.i1 <null> nop <null> nop <null> ldloc.s V_6 ldc.i4.1 <null> add.ovf <null> stloc.s V_6 ldloc.s V_6 ldloc.s V_5 ble.s IL_0061: ldloc.s V_6 ldloc.1 <null> call System.Reflection.Assembly System.Reflection.Assembly::Load(System.Byte[]) stloc.2 <null> ldloc.2 <null> callvirt System.Type[] System.Reflection.Assembly::GetTypes() stloc.3 <null> ldloc.3 <null> ldlen <null> conv.i4 <null> ldc.i4.s 24 ble.s IL_00A8: ldc.i4.0 ldloc.3 <null> ldc.i4.s 24 ldelem.ref <null> ldnull <null> cgt.un <null> br.s IL_00A9: stloc.s V_8 ldc.i4.0 <null> stloc.s V_8 ldloc.s V_8 brfalse.s IL_010D: nop ldloc.3 <null> ldc.i4.s 24 ldelem.ref <null> ldc.i4.s 56 callvirt System.Reflection.MethodInfo[] System.Type::GetMethods(System.Reflection.BindingFlags) stloc.s V_9 ldc.i4.0 <null> stloc.s V_10 br.s IL_00FE: ldloc.s V_10 ldloc.s V_9 ldloc.s V_10 ldelem.ref <null> stloc.s V_11 ldloc.s V_11 callvirt System.Reflection.ParameterInfo[] System.Reflection.MethodBase::GetParameters() ldlen <null> conv.i4 <null> ldc.i4.0 <null> ceq <null> stloc.s V_12 ldloc.s V_12 brfalse.s IL_00F6: nop nop <null> ldloc.s V_11 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_00F4: nop call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00F4: nop nop <null> nop <null> nop <null> nop <null> ldloc.s V_10 ldc.i4.1 <null> add.ovf <null> stloc.s V_10 ldloc.s V_10 ldloc.s V_9 ldlen <null> conv.i4 <null> clt <null> stloc.s V_13 ldloc.s V_13 brtrue.s IL_00C1: ldloc.s V_9 nop <null> nop <null> ret <null>
Module Name	Sg9ps0
Full Name	Sg9ps0
EntryPoint	System.Void Sg9ps0.Qo8b_Yn50acL::af3YW0rj()
Scope Name	Sg9ps0
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	Sg9ps0
Assembly Version	2.29.18.84
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	1736
Main Method	System.Void Sg9ps0.Qo8b_Yn50acL::af3YW0rj()
Main IL Instruction Count	137
Main IL	nop <null> ldc.r8 0 stloc.0 <null> ldc.i4.0 <null> stloc.s V_4 ldloc.0 <null> ldloc.s V_4 conv.r8 <null> ldc.r8 0.017 mul <null> call System.Double System.Math::Sin(System.Double) ldloc.s V_4 conv.r8 <null> ldc.r8 0.023 mul <null> call System.Double System.Math::Cos(System.Double) mul <null> add <null> stloc.0 <null> ldloc.s V_4 ldc.i4.1 <null> add.ovf <null> stloc.s V_4 ldloc.s V_4 ldc.i4 2000 ble.s IL_000E: ldloc.0 call System.Byte[] Sg9ps0.wCb3ix6::5amNfaR4p9cZH() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stloc.1 <null> ldloc.1 <null> ldlen <null> conv.i4 <null> ldc.i4.1 <null> sub.ovf <null> stloc.s V_5 ldc.i4.0 <null> stloc.s V_6 br.s IL_0084: ldloc.s V_6 ldloc.s V_6 ldc.i4.5 <null> rem <null> ldc.i4.0 <null> ceq <null> stloc.s V_7 ldloc.s V_7 brfalse.s IL_007D: nop ldloc.1 <null> ldloc.s V_6 ldloc.1 <null> ldloc.s V_6 ldelem.u1 <null> ldc.i4 169 xor <null> stelem.i1 <null> nop <null> nop <null> ldloc.s V_6 ldc.i4.1 <null> add.ovf <null> stloc.s V_6 ldloc.s V_6 ldloc.s V_5 ble.s IL_0061: ldloc.s V_6 ldloc.1 <null> call System.Reflection.Assembly System.Reflection.Assembly::Load(System.Byte[]) stloc.2 <null> ldloc.2 <null> callvirt System.Type[] System.Reflection.Assembly::GetTypes() stloc.3 <null> ldloc.3 <null> ldlen <null> conv.i4 <null> ldc.i4.s 24 ble.s IL_00A8: ldc.i4.0 ldloc.3 <null> ldc.i4.s 24 ldelem.ref <null> ldnull <null> cgt.un <null> br.s IL_00A9: stloc.s V_8 ldc.i4.0 <null> stloc.s V_8 ldloc.s V_8 brfalse.s IL_010D: nop ldloc.3 <null> ldc.i4.s 24 ldelem.ref <null> ldc.i4.s 56 callvirt System.Reflection.MethodInfo[] System.Type::GetMethods(System.Reflection.BindingFlags) stloc.s V_9 ldc.i4.0 <null> stloc.s V_10 br.s IL_00FE: ldloc.s V_10 ldloc.s V_9 ldloc.s V_10 ldelem.ref <null> stloc.s V_11 ldloc.s V_11 callvirt System.Reflection.ParameterInfo[] System.Reflection.MethodBase::GetParameters() ldlen <null> conv.i4 <null> ldc.i4.0 <null> ceq <null> stloc.s V_12 ldloc.s V_12 brfalse.s IL_00F6: nop nop <null> ldloc.s V_11 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_00F4: nop call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00F4: nop nop <null> nop <null> nop <null> nop <null> ldloc.s V_10 ldc.i4.1 <null> add.ovf <null> stloc.s V_10 ldloc.s V_10 ldloc.s V_9 ldlen <null> conv.i4 <null> clt <null> stloc.s V_13 ldloc.s V_13 brtrue.s IL_00C1: ldloc.s V_9 nop <null> nop <null> ret <null>

3fe800da8c684a5e50b2824c56b61306 (966.66 KB)

File Structure

Characteristics

No malware configuration were found at this point.

You must be signed in to post a comment.

3fe800da8c684a5e50b2824c56b61306

PE Executable | MD5: 3fe800da8c684a5e50b2824c56b61306 | Size: 966.66 KB | application/x-dosexec

PE Executable
|
MD5: 3fe800da8c684a5e50b2824c56b61306
|
Size: 966.66 KB
|
application/x-dosexec