Suspect
4c4d1aeab54cfc4e58f9190812fa7dac
PE Executable | MD5: 4c4d1aeab54cfc4e58f9190812fa7dac | Size: 1.24 MB | application/x-dosexec
PE Executable
MD5: 4c4d1aeab54cfc4e58f9190812fa7dac
Size: 1.24 MB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Obfuscation Score
Very high
|
Hash | Hash Value |
|---|---|
| MD5 | 4c4d1aeab54cfc4e58f9190812fa7dac
|
| Sha1 | 1f60d2dade7a732fc83077f347a1df297609fc54
|
| Sha256 | 6163ab22713dc71953638cd3fcc14c6b142a88ab842c528ece5ea5f2e5be9e21
|
| Sha384 | 0aa25400b556ce724aa2a9080dc641b9c071d05f8f97c655fbf52ca5085e96afb753a3ea4649732a54b6d259cd5a56c0
|
| Sha512 | 63566d7062853d7bd04a886eadc2615966c97dcd265c9c9f66efd4ff946646064c40e6fe58fb744e90429522effb937bebd2960352555da005721cd9d41d28c3
|
| SSDeep | 12288:CKdH37Pl9/0JSyLqgRSuZyOfP0ZLZ5W+vB5vknCws2HmTQ6kTzwYe2AXL0hmyzcE:H53P/0J7hsu25UHmTQ7TMYeh6x1KObJ
|
| TLSH | 3245E0156EC31A64D5954F74D2A600A837F0C65B2207E76F2FED02F0EEA7B4ECD0A492
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
4c4d1aeab54cfc4e58f9190812fa7dac
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
Sonicalora.53536511.bat
7Lx_dgY84bkBx.Resources.resources
67330b1feaec56.Resources.resources
68b29b510
[NBF]root.Data
68b29b511
[NBF]root.Data
68b29b5110
[NBF]root.Data
68b29b5111
[NBF]root.Data
68b29b5112
[NBF]root.Data
68b29b5113
[NBF]root.Data
68b29b5114
[NBF]root.Data
68b29b5115
[NBF]root.Data
68b29b5116
[NBF]root.Data
68b29b5117
[NBF]root.Data
68b29b5118
[NBF]root.Data
68b29b5119
[NBF]root.Data
68b29b512
[NBF]root.Data
68b29b5120
[NBF]root.Data
68b29b5121
[NBF]root.Data
68b29b5122
[NBF]root.Data
68b29b5123
[NBF]root.Data
68b29b5124
[NBF]root.Data
68b29b5125
[NBF]root.Data
68b29b5126
[NBF]root.Data
68b29b5127
[NBF]root.Data
68b29b5128
[NBF]root.Data
68b29b5129
[NBF]root.Data
68b29b513
[NBF]root.Data
68b29b5130
[NBF]root.Data
68b29b5131
[NBF]root.Data
68b29b5132
[NBF]root.Data
68b29b5133
[NBF]root.Data
68b29b5134
[NBF]root.Data
68b29b5135
[NBF]root.Data
68b29b5136
[NBF]root.Data
68b29b5137
[NBF]root.Data
68b29b514
[NBF]root.Data
68b29b515
[NBF]root.Data
68b29b516
[NBF]root.Data
68b29b517
[NBF]root.Data
68b29b518
[NBF]root.Data
68b29b519
[NBF]root.Data
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | 7Lx_dgY84bkBx |
| Full Name | 7Lx_dgY84bkBx |
| EntryPoint | System.Void Qj3gz6zWxn.fs0NM3im7bR/nZa5Nc.dd8LZj::Nbg1sR5k() |
| Scope Name | 7Lx_dgY84bkBx |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | 7Lx_dgY84bkBx |
| Assembly Version | 18.15.45.245 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.6 |
| Total Strings | 0 |
| Main Method | System.Void Qj3gz6zWxn.fs0NM3im7bR/nZa5Nc.dd8LZj::Nbg1sR5k() |
| Main IL Instruction Count | 7 |
| Main IL | nop <null> newobj System.Void me8H4rEdjx6Z.9xtGwM::.ctor() stloc.0 <null> ret <null> ldtoken System.Void Qj3gz6zWxn.fs0NM3im7bR/nZa5Nc.dd8LZj::Nbg1sR5k() pop <null> ret <null> |
| Module Name | 7Lx_dgY84bkBx |
| Full Name | 7Lx_dgY84bkBx |
| EntryPoint | System.Void Qj3gz6zWxn.fs0NM3im7bR/nZa5Nc.dd8LZj::Nbg1sR5k() |
| Scope Name | 7Lx_dgY84bkBx |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | 7Lx_dgY84bkBx |
| Assembly Version | 18.15.45.245 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.6 |
| Total Strings | 0 |
| Main Method | System.Void Qj3gz6zWxn.fs0NM3im7bR/nZa5Nc.dd8LZj::Nbg1sR5k() |
| Main IL Instruction Count | 7 |
| Main IL | nop <null> newobj System.Void me8H4rEdjx6Z.9xtGwM::.ctor() stloc.0 <null> ret <null> ldtoken System.Void Qj3gz6zWxn.fs0NM3im7bR/nZa5Nc.dd8LZj::Nbg1sR5k() pop <null> ret <null> |
4c4d1aeab54cfc4e58f9190812fa7dac (1.24 MB)
File Structure
4c4d1aeab54cfc4e58f9190812fa7dac
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
Sonicalora.53536511.bat
7Lx_dgY84bkBx.Resources.resources
67330b1feaec56.Resources.resources
68b29b510
[NBF]root.Data
68b29b511
[NBF]root.Data
68b29b5110
[NBF]root.Data
68b29b5111
[NBF]root.Data
68b29b5112
[NBF]root.Data
68b29b5113
[NBF]root.Data
68b29b5114
[NBF]root.Data
68b29b5115
[NBF]root.Data
68b29b5116
[NBF]root.Data
68b29b5117
[NBF]root.Data
68b29b5118
[NBF]root.Data
68b29b5119
[NBF]root.Data
68b29b512
[NBF]root.Data
68b29b5120
[NBF]root.Data
68b29b5121
[NBF]root.Data
68b29b5122
[NBF]root.Data
68b29b5123
[NBF]root.Data
68b29b5124
[NBF]root.Data
68b29b5125
[NBF]root.Data
68b29b5126
[NBF]root.Data
68b29b5127
[NBF]root.Data
68b29b5128
[NBF]root.Data
68b29b5129
[NBF]root.Data
68b29b513
[NBF]root.Data
68b29b5130
[NBF]root.Data
68b29b5131
[NBF]root.Data
68b29b5132
[NBF]root.Data
68b29b5133
[NBF]root.Data
68b29b5134
[NBF]root.Data
68b29b5135
[NBF]root.Data
68b29b5136
[NBF]root.Data
68b29b5137
[NBF]root.Data
68b29b514
[NBF]root.Data
68b29b515
[NBF]root.Data
68b29b516
[NBF]root.Data
68b29b517
[NBF]root.Data
68b29b518
[NBF]root.Data
68b29b519
[NBF]root.Data
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.