Suspicious
Suspect

4e28c592d9e4a05fc40a838f308ac09d

PE Executable
|
MD5: 4e28c592d9e4a05fc40a838f308ac09d
|
Size: 973.31 KB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics

Symbol Obfuscation Score

Medium

Hash
 Hash Value
MD5
4e28c592d9e4a05fc40a838f308ac09d
Sha1
75da149aba672a0394a412ea2739e034eacf7425
Sha256
7224aa6e238143afbd792bf5ebc694fd401b041c38987080f23ca7f6bacad265
Sha384
ddf757c539ce41f11ff3ef12a35e53c5383d70c8686f4b8bbf507c90a4820e45234ba1a6329d4ae5ceddafff359d12fe
Sha512
2bbc914df3568557c4d5f7f0f89f674e57f33eeff783f70b964d1953e8bafe411068900ea562e4bdd919515657d078b09c494e0542d0a2c6feed1856a453e8ef
SSDeep
12288:IvwXLhWt7IZYcPyqDQJqFCY6QoaO+OHWN8A9rGq3qMe108NJhKc89gwnzHBGjd/:iwbQ02cPyugYQaevARRGTqzwh
TLSH
DF25238EBE285E37E35C1FB1C80B260249B4DA72D105F5738DEC4EF50E6A6D9414DEA2

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
4e28c592d9e4a05fc40a838f308ac09d
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0-preview.png
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

GjGs.exe
Full Name

GjGs.exe
EntryPoint

System.Void Phm.Time.x::Main()
Scope Name

GjGs.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

GjGs
Assembly Version

7.5.3.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5
Total Strings

2
Main Method

System.Void Phm.Time.x::Main()
Main IL Instruction Count

9
Main IL

call System.Void Phm.Time.TimetableEntry::Ⴅ() newobj System.Void WinFormsJogoDaVelha.Form1::.ctor() ldc.i4 744 ldc.i4 689 call System.Void Phm.Time.TaskResult::Ⴃ<System.Windows.Forms.Form>(System.Windows.Forms.Form,System.Char,System.Int32) ret <null> ldtoken System.Void Phm.Time.x::Main() pop <null> ret <null>
Module Name

GjGs.exe
Full Name

GjGs.exe
EntryPoint

System.Void Phm.Time.x::Main()
Scope Name

GjGs.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

GjGs
Assembly Version

7.5.3.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5
Total Strings

2
Main Method

System.Void Phm.Time.x::Main()
Main IL Instruction Count

9
Main IL

call System.Void Phm.Time.TimetableEntry::Ⴅ() newobj System.Void WinFormsJogoDaVelha.Form1::.ctor() ldc.i4 744 ldc.i4 689 call System.Void Phm.Time.TaskResult::Ⴃ<System.Windows.Forms.Form>(System.Windows.Forms.Form,System.Char,System.Int32) ret <null> ldtoken System.Void Phm.Time.x::Main() pop <null> ret <null>
4e28c592d9e4a05fc40a838f308ac09d (973.31 KB)
File Structure
4e28c592d9e4a05fc40a838f308ac09d
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0-preview.png
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙