General
Structural Analysis
Config.0
Yara Rules15
Sync
Community
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 4973884860d45412e77032fcdb77d7e3
|
| Sha1 | 4c6cbca0a0ddfe29e5d016da10496c1b8317ebac
|
| Sha256 | 0bbb6dad7c704119dda739b437b86fc9b8b3629569171b8252c735efad636412
|
| Sha384 | ec01e4fe5e669901cdf6a0fcda261cf108f4a67ce82ba7608f649075257c2926d5e17f6281231b8a52a08ec4846ebe35
|
| Sha512 | e3e7d0ffafbfdb96eebe0adc3d03f42d4139471d0aa99618072084a74fd8497fa9254e22756fa5bfa7a70d9e4638b51cfeeb5cf9440ea933ad76c532a786c497
|
| SSDeep | 12288:IvXqEe9UByVsVdw2n7P6ZNSL2lFPoY0Xj7kZt0yfSKV4hmz/XEZOUzC1QZoZcn2W:kCaeCK2n7PUoA4X830yf+wzBUzC1QSch
|
| TLSH | 51E433742621E97367B881B3112E55B4C532B0CC09DE7A7F6C36EBA3C56EA23D0CD646
|
File Structure
Payment Confirmation Print Out Copy MT103_TRF#250710.PDF.exe
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
EczaneOtomasyon.AnaMenu.resources
EczaneOtomasyon.Hakkinda.resources
ımageList1.ImageStream
[NBF]root.Data
EczaneOtomasyon.GenelMenu.resources
ımageList1.ImageStream
[NBF]root.Data
EczaneOtomasyon.Properties.Resources.resources
NCXS
[NBF]root.Data
[NBF]root.Data-preview.png
jj
[NBF]root.Data
EczaneOtomasyon.SaglikArsiv.resources
ımageList1.TrayLocation
Artefacts
|
Name0 | Value |
|---|---|
| PDB Path | XWga.pdb |
| Embedded Resources | 20 |
| Suspicious Type Names (1-2 chars) | 0 |
4973884860d45412e77032fcdb77d7e3 (676.31 KB)
File Structure
Payment Confirmation Print Out Copy MT103_TRF#250710.PDF.exe
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
EczaneOtomasyon.AnaMenu.resources
EczaneOtomasyon.Hakkinda.resources
ımageList1.ImageStream
[NBF]root.Data
EczaneOtomasyon.GenelMenu.resources
ımageList1.ImageStream
[NBF]root.Data
EczaneOtomasyon.Properties.Resources.resources
NCXS
[NBF]root.Data
[NBF]root.Data-preview.png
jj
[NBF]root.Data
EczaneOtomasyon.SaglikArsiv.resources
ımageList1.TrayLocation
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| PDB Path | XWga.pdb |
4973884860d45412e77032fcdb77d7e3 > Payment Confirmation Print Out Copy MT103_TRF#250710.PDF.exe |
| Embedded Resources | 20 |
4973884860d45412e77032fcdb77d7e3 > Payment Confirmation Print Out Copy MT103_TRF#250710.PDF.exe |
| Suspicious Type Names (1-2 chars) | 0 |
4973884860d45412e77032fcdb77d7e3 > Payment Confirmation Print Out Copy MT103_TRF#250710.PDF.exe |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.