Suspicious
Suspect

51fef89ad60645df54f6da35b741365e

PE Executable
|
MD5: 51fef89ad60645df54f6da35b741365e
|
Size: 10.5 MB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
51fef89ad60645df54f6da35b741365e
Sha1
906be847cb424f5c65d6526df242382c63df60b9
Sha256
44912e99d5e1e8047a846448083f09caa07a69962a460a16c1ecac9a7babf9a6
Sha384
de02d373c64d69da610f89a3898973330b9a8ad261d2ca3c5167b5a4e7afccfafd255e8faeae401c7651022562697790
Sha512
b4ebc78101e40c04536a7f5984e34e6508e0178edbc8dcd02710e404f45f68d2ca2abbfd7ba24a14f586501a7e0183b8af20afb65f083276497333b093de8cb7
SSDeep
49152:b1JBBKxAYnsNOY6+I0vq8tt7MUmzEFBkuYQV+LZb:RrBKxAFllA8tqFycZb
TLSH
38B68611676C07EDCF6B0A6842425EBBEC946A42736C0E671D03366E73970A5CBF1E72

PeID

Microsoft Visual C++ v6.0 DLL
Nullsoft PiMP Stub -> SFX
File Structure
51fef89ad60645df54f6da35b741365e
[Authenticode]_4771e75a.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.ndata
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:1033
ID:0002
ID:1033
ID:1033-preview.png
RT_DIALOG
ID:0069
ID:1033
ID:006A
ID:1033
ID:006F
ID:1033
RT_GROUP_CURSOR4
ID:0067
ID:1033
RT_MANIFEST
ID:0001
ID:1033
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

Authenticode present at 0x9FFFE8 size 11888 bytes
51fef89ad60645df54f6da35b741365e (10.5 MB)
File Structure
51fef89ad60645df54f6da35b741365e
[Authenticode]_4771e75a.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.ndata
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:1033
ID:0002
ID:1033
ID:1033-preview.png
RT_DIALOG
ID:0069
ID:1033
ID:006A
ID:1033
ID:006F
ID:1033
RT_GROUP_CURSOR4
ID:0067
ID:1033
RT_MANIFEST
ID:0001
ID:1033
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙