Suspicious
Suspect

542b068ff363845ed7f39bbb18a670bc

PE Executable
|
MD5: 542b068ff363845ed7f39bbb18a670bc
|
Size: 396.73 KB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
542b068ff363845ed7f39bbb18a670bc
Sha1
bcdee246abcab798c2114407de189ff7307196fc
Sha256
ebd4331fb913b6dea5616aa04e6565691b39240725e238ab334936d8bb0b1a8c
Sha384
6c96e9c6e4069706b2e04121b04e368a4a25595c94a966d34f8b8741a6786bbdaaf01588402b2bc7bcd8e7631ec59fb2
Sha512
5e46a72312b7a47abbc7b46f63f871c7c343ecf377fc5f57fd530a3745a475dd57e400bf54b125862e8f5114e5fdbb134abb9594b4558a189397a87a8ab7a8fb
SSDeep
6144:MkTnLr3yDUTCB4pPgTQJuU2YTQrq6pvwHuo0cMlYbc5tes:xuDpB4KZ3r/xwHGl2bcSs
TLSH
E3848E07F657909AD450D072AE196631F727BC4B4B2039E77B8C8621BFB0ED0767878A

PeID

Microsoft Visual C++ 8.0
Microsoft Visual C++ 8.0 (DLL)
Microsoft Visual C++ v6.0 DLL
File Structure
542b068ff363845ed7f39bbb18a670bc
[Authenticode]_169a2d3f.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:1033
ID:1033-preview.png
ID:0002
ID:1033
ID:1033-preview.png
ID:0003
ID:1033
ID:1033-preview.png
ID:0004
ID:1033
ID:1033-preview.png
ID:0005
ID:1033
ID:1033-preview.png
ID:0006
ID:1033
ID:1033-preview.png
ID:0007
ID:1033
ID:1033-preview.png
RT_GROUP_CURSOR4
ID:0000
ID:1033
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

Authenticode present at 0x5E400 size 10680 bytes
Info

PDB Path: t
542b068ff363845ed7f39bbb18a670bc (396.73 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙