4a2e682bee61ceb96b37e05d5b17b45e

PE Executable
|
MD5: 4a2e682bee61ceb96b37e05d5b17b45e
|
Size: 739.33 KB
|
application/x-dosexec

Infection Chain

Summary by MalvaGPT

Characteristics

Hash	Hash Value
MD5	4a2e682bee61ceb96b37e05d5b17b45e
Sha1	cdbf356a8e7898834f60b8519f38ced27c8704fd
Sha256	39b14d5124623a41296dad28a2608df3ecb19afbd2f1cd8226ce06d25c8aa380
Sha384	5c1ae8359a8edf2ea3c8e8ac2a412d863019032df1e6685de231e5f147035e72659623a9a20a2e77c49e14007a3b550e
Sha512	1c75e090be117ad04ce341b0319bc21fee32ce6c7f2dbaa11c124f5a996e37ce83c25d0a9972f38f86e87dd9ae7bc98dbcfd4f712f6a88e6ca1e9052ebe86281
SSDeep	12288:I0wE3jyInbmU3fQVPnt+Wiua6KdrLm+p8v1tDEN9MHJ1JQWQ9GJjTrzRUO/v1lDR:Ve+Wiua6KdrLR2v1ZENmRs+3GkvIh9
TLSH	1FF49D1992F15F21D7E91F74E4A60C10576056406A23F77F2A082479ACC32FEBEDA3E9

PeID

.NET executable

Microsoft Visual C# / Basic .NET

Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL

Microsoft Visual C# v7.0 / Basic .NET

Microsoft Visual Studio .NET

File Structure

Informations

Name0	Value
Info	PE Detect: PeReader OK (file layout)
Module Name	AudioService.exe
Full Name	AudioService.exe
EntryPoint	System.Void AudioService.Internal.SenderStream::<Main>(System.String[])
Scope Name	AudioService.exe
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	AudioService
Assembly Version	1.0.0.0
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.5
Total Strings	59
Main Method	System.Void AudioService.Internal.SenderStream::<Main>(System.String[])
Main IL Instruction Count	34
Main IL	ldc.i4 1 stloc V_1 br IL_000E: ldloc V_1 ldloc V_1 switch dnlib.DotNet.Emit.Instruction[] br IL_0056: ldarg.0 ldsfld ListTracer ListTracer::AddScalableAllocator call System.Void ListTracer::AdaptReg(ListTracer) ldc.i4 0 ldsfld <Module>{9a408651-baf9-4b6e-bb20-82516820aeff} <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_2701d2a3fc0a4a2a9959f9ab66898b65 ldfld System.Int32 <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_696f798896f34d8d9b9f649ccb8e3504 brtrue IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) pop <null> ldc.i4 0 br IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) ret <null> ldarg.0 <null> ldsfld ConvertibleSummarizerList ConvertibleSummarizerList::SortVisibleExecutor call System.Threading.Tasks.Task ConvertibleSummarizerList::AdaptReg(System.String[],ConvertibleSummarizerList) ldsfld ListElement ListElement::EnumerateScopeMapper call System.Runtime.CompilerServices.TaskAwaiter ListElement::AdaptReg(System.Object,ListElement) stloc.s V_0 ldc.i4 3 br IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) ldloca.s V_0 ldsfld ListCommand ListCommand::EnumerateFilteredStrategy call System.Void ListCommand::AdaptReg(System.Runtime.CompilerServices.TaskAwaiter&,ListCommand) ldc.i4 1 ldsfld <Module>{9a408651-baf9-4b6e-bb20-82516820aeff} <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_2701d2a3fc0a4a2a9959f9ab66898b65 ldfld System.Int32 <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_fcbd2321d2994d058d410da3ab66b0fc brtrue IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) pop <null> ldc.i4 2 br IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077)
Module Name	AudioService.exe
Full Name	AudioService.exe
EntryPoint	System.Void AudioService.Internal.SenderStream::<Main>(System.String[])
Scope Name	AudioService.exe
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	AudioService
Assembly Version	1.0.0.0
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.5
Total Strings	59
Main Method	System.Void AudioService.Internal.SenderStream::<Main>(System.String[])
Main IL Instruction Count	34
Main IL	ldc.i4 1 stloc V_1 br IL_000E: ldloc V_1 ldloc V_1 switch dnlib.DotNet.Emit.Instruction[] br IL_0056: ldarg.0 ldsfld ListTracer ListTracer::AddScalableAllocator call System.Void ListTracer::AdaptReg(ListTracer) ldc.i4 0 ldsfld <Module>{9a408651-baf9-4b6e-bb20-82516820aeff} <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_2701d2a3fc0a4a2a9959f9ab66898b65 ldfld System.Int32 <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_696f798896f34d8d9b9f649ccb8e3504 brtrue IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) pop <null> ldc.i4 0 br IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) ret <null> ldarg.0 <null> ldsfld ConvertibleSummarizerList ConvertibleSummarizerList::SortVisibleExecutor call System.Threading.Tasks.Task ConvertibleSummarizerList::AdaptReg(System.String[],ConvertibleSummarizerList) ldsfld ListElement ListElement::EnumerateScopeMapper call System.Runtime.CompilerServices.TaskAwaiter ListElement::AdaptReg(System.Object,ListElement) stloc.s V_0 ldc.i4 3 br IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) ldloca.s V_0 ldsfld ListCommand ListCommand::EnumerateFilteredStrategy call System.Void ListCommand::AdaptReg(System.Runtime.CompilerServices.TaskAwaiter&,ListCommand) ldc.i4 1 ldsfld <Module>{9a408651-baf9-4b6e-bb20-82516820aeff} <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_2701d2a3fc0a4a2a9959f9ab66898b65 ldfld System.Int32 <Module>{9a408651-baf9-4b6e-bb20-82516820aeff}::m_fcbd2321d2994d058d410da3ab66b0fc brtrue IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077) pop <null> ldc.i4 2 br IL_0012: switch(IL_0056,IL_002C,IL_0055,IL_0077)

4a2e682bee61ceb96b37e05d5b17b45e (739.33 KB)

File Structure

Characteristics

No malware configuration were found at this point.

You must be signed in to post a comment.

4a2e682bee61ceb96b37e05d5b17b45e

PE Executable | MD5: 4a2e682bee61ceb96b37e05d5b17b45e | Size: 739.33 KB | application/x-dosexec

PE Executable
|
MD5: 4a2e682bee61ceb96b37e05d5b17b45e
|
Size: 739.33 KB
|
application/x-dosexec