Suspect
49055515848d8d7b02cef2850da4b94a
PE Executable | MD5: 49055515848d8d7b02cef2850da4b94a | Size: 1.05 MB | application/x-dosexec
PE Executable
MD5: 49055515848d8d7b02cef2850da4b94a
Size: 1.05 MB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 49055515848d8d7b02cef2850da4b94a
|
| Sha1 | 042ec0dec64acbb34dce13cb7a51f2947762b5f9
|
| Sha256 | 3af27ba9b5341f23c78d7f67b51497b4ccc51adfdadf059d42182ca887298e17
|
| Sha384 | 2da061def6b85d4cece018d99a4c2d0e972445850cb399c85a4071271541715748b13090c12eb6600231418f9e9ebe22
|
| Sha512 | 30daba811ef4b7f7eb3dac270cef76b3dd9e6f855d16794dbd3f861cb95a9777b647489a68da0b1c1118af53c18be5fa0bd0d45519bbccc53a6b709c922dd502
|
| SSDeep | 24576:/Y1FoBJNrEF+e4NqxujY8j0iBjDuqTXSh9FmTVs:pNrUdDx2Si5VTXw9G
|
| TLSH | 8625F120329BD205D8560FB00C35D3F553B9BE9DBA14C70E6DE92E9FBD326039B146A6
|
File Structure
49055515848d8d7b02cef2850da4b94a
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0.exif
ID:0-preview.png
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
StokTakip.BrandsManage.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Font
$this.Margin
btnCreateBrand.Location
btnCreateBrand.Size
btnDeleteBrand.Location
btnDeleteBrand.Size
groupBox1.Location
groupBox1.Size
lst_Brands.Dock
lst_Brands.Location
lst_Brands.Size
txtBrandName.Location
txtBrandName.Size
StokTakip.Form1.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Icon
[NBF]root.IconData
$this.Margin
$this.StartPosition
CTT
[NBF]root.Data
dilToolStripMenuItem.Font
dilToolStripMenuItem.Size
englishToolStripMenuItem.Size
markalarToolStripMenuItem.Size
menuStrip1.Size
menuStrip1.TrayLocation
satışToolStripMenuItem.Font
satışToolStripMenuItem.Size
tanımlarToolStripMenuItem.Size
StokTakip.PhoneCaseCreate.resources
$this.ClientSize
btn_AddStock.Location
btn_AddStock.Size
btn_Clear.ImeMode
btn_Clear.Location
btn_Clear.Size
btn_save.Location
btn_save.Size
cb_cases.Location
cb_cases.Size
cb_color.Location
label1.Location
label1.Size
label2.Location
label2.Size
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label7.Location
label7.Size
label7.TextAlign
lbl_info.Font
lbl_info.Location
lbl_info.Size
nm_price.Location
nm_price.Size
nm_qty.Location
nm_qtyAdd.Location
tabControl1.Location
tabControl1.Size
tabPage1.Location
tabPage1.Padding
tabPage1.Size
tb_name.Location
StokTakip.PhoneCaseManage.resources
StokTakip.PhoneCreate.resources
$this.ClientSize
btn_Clear.Location
btn_save.Location
btn_save.Size
cb_brand.Location
label1.Location
label1.Size
label2.Location
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label6.Location
nm_price.Location
tb_IMEI1.Location
tb_IMEI2.Location
tb_modelCode.Location
tb_name.Location
StokTakip.PhonesManage.resources
$this.ClientSize
btn_deletePhone.Location
btn_deletePhone.Size
btn_newPhone.Location
btn_newPhone.Size
filter_btn_search.Location
filter_btn_search.Size
filter_cb_brand.Size
filter_tb_modelcode.Location
filter_tb_modelcode.Size
grid_phones.Location
grid_phones.Size
StokTakip.Properties.Resources.resources
definitions
iconfinder_search_322497
[NBF]root.Data
[NBF]root.Data-preview.png
myoV
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: C:\Users\Administrator\Desktop\Client\Temp\iwHitsHQXt\src\obj\Debug\ZRuO.pdb |
| Module Name | ZRuO.exe |
| Full Name | ZRuO.exe |
| EntryPoint | System.Void StokTakip.Program::Main() |
| Scope Name | ZRuO.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | ZRuO |
| Assembly Version | 0.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 255 |
| Main Method | System.Void StokTakip.Program::Main() |
| Main IL Instruction Count | 12 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> call System.Void StokTakip.Ayar::GetLatestLanguage() nop <null> newobj System.Void StokTakip.Form1::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
49055515848d8d7b02cef2850da4b94a (1.05 MB)
File Structure
49055515848d8d7b02cef2850da4b94a
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0.exif
ID:0-preview.png
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
StokTakip.BrandsManage.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Font
$this.Margin
btnCreateBrand.Location
btnCreateBrand.Size
btnDeleteBrand.Location
btnDeleteBrand.Size
groupBox1.Location
groupBox1.Size
lst_Brands.Dock
lst_Brands.Location
lst_Brands.Size
txtBrandName.Location
txtBrandName.Size
StokTakip.Form1.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Icon
[NBF]root.IconData
$this.Margin
$this.StartPosition
CTT
[NBF]root.Data
dilToolStripMenuItem.Font
dilToolStripMenuItem.Size
englishToolStripMenuItem.Size
markalarToolStripMenuItem.Size
menuStrip1.Size
menuStrip1.TrayLocation
satışToolStripMenuItem.Font
satışToolStripMenuItem.Size
tanımlarToolStripMenuItem.Size
StokTakip.PhoneCaseCreate.resources
$this.ClientSize
btn_AddStock.Location
btn_AddStock.Size
btn_Clear.ImeMode
btn_Clear.Location
btn_Clear.Size
btn_save.Location
btn_save.Size
cb_cases.Location
cb_cases.Size
cb_color.Location
label1.Location
label1.Size
label2.Location
label2.Size
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label7.Location
label7.Size
label7.TextAlign
lbl_info.Font
lbl_info.Location
lbl_info.Size
nm_price.Location
nm_price.Size
nm_qty.Location
nm_qtyAdd.Location
tabControl1.Location
tabControl1.Size
tabPage1.Location
tabPage1.Padding
tabPage1.Size
tb_name.Location
StokTakip.PhoneCaseManage.resources
StokTakip.PhoneCreate.resources
$this.ClientSize
btn_Clear.Location
btn_save.Location
btn_save.Size
cb_brand.Location
label1.Location
label1.Size
label2.Location
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label6.Location
nm_price.Location
tb_IMEI1.Location
tb_IMEI2.Location
tb_modelCode.Location
tb_name.Location
StokTakip.PhonesManage.resources
$this.ClientSize
btn_deletePhone.Location
btn_deletePhone.Size
btn_newPhone.Location
btn_newPhone.Size
filter_btn_search.Location
filter_btn_search.Size
filter_cb_brand.Size
filter_tb_modelcode.Location
filter_tb_modelcode.Size
grid_phones.Location
grid_phones.Size
StokTakip.Properties.Resources.resources
definitions
iconfinder_search_322497
[NBF]root.Data
[NBF]root.Data-preview.png
myoV
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.