Malicious
Malicious

47ace319bdf0a717c4ee09ab34098eb2

PE Executable
|
MD5: 47ace319bdf0a717c4ee09ab34098eb2
|
Size: 2.91 MB
|
application/x-dosexec

Print
Infection Chain
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
47ace319bdf0a717c4ee09ab34098eb2
Sha1
c2cd51bceecd92b31b071cda806371212a0a586f
Sha256
4e5712fab9aafbdfab1a9e274c5c3ac81aa2edec7881d629a652a63f15de6ee4
Sha384
dbdda5a7056458970bac8657264ddcd90198b142dbd3201ccfd74a284b0691af22187e2e226d9dba616193062e5a407d
Sha512
1aa55b7861b2ef0bc8ad2662ff3dde16d76c948a8c31719489332f091b658651d7b4b25f362cfe1a9b28aab81efe391a7e52083f4e8ae49a577f0248ba1ce43d
SSDeep
49152:lj3Yv0zatSUXHxJzP4h7r2iJ53sskJ2otak+FgnzcD4q:d3V+X3nQhl5yJ2ot6Mc
TLSH
3FD5D0027E84CE11F0591233C6EF454847B4A9526AF6E32B7CBA376E55123A77C0E9CB

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
47ace319bdf0a717c4ee09ab34098eb2
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.sdata
.rsrc
.reloc
Resources
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
.Net Resources
UvokIws9qD7wI1P4o6.JDKiOWkJkGxPDIOPDh
sE4McdP0anl3ADQgBO.yBnsXe1LsyZEZtkch7
Informations
Name
 Value
Module Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Full Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
EntryPoint

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Scope Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

uJelwpMlXUAqOzq5ugg9
Assembly Version

5.8.3.8
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

63
Main Method

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Main IL Instruction Count

14
Main IL

br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void fO9Or3s74kyUJeGRJVc.tevY50sVPryGcxTYmGd::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::wcmr4Vqnvi callvirt System.Void P08WQPJVa2N8wF7cdRu.aYE94BJtBXfjOALdNNP::KWTCVk02yV() nop <null> ret <null>
Module Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Full Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
EntryPoint

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Scope Name

Jutnmie65oKnGuG3WZX9QnuMuQvghBuEKA7e
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

uJelwpMlXUAqOzq5ugg9
Assembly Version

5.8.3.8
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

63
Main Method

System.Void ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::K9UrNNskk7()
Main IL Instruction Count

14
Main IL

br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void fO9Or3s74kyUJeGRJVc.tevY50sVPryGcxTYmGd::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object ywfy9cJbTPFdZha9oMA.CM9qioJuQ7Ub40pYE83::wcmr4Vqnvi callvirt System.Void P08WQPJVa2N8wF7cdRu.aYE94BJtBXfjOALdNNP::KWTCVk02yV() nop <null> ret <null>
47ace319bdf0a717c4ee09ab34098eb2 (2.91 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙