Suspicious
Suspect

54d02d0989767217139e1fde2423dbb6

PE Executable
|
MD5: 54d02d0989767217139e1fde2423dbb6
|
Size: 1.21 MB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Medium

Hash
 Hash Value
MD5
54d02d0989767217139e1fde2423dbb6
Sha1
1c017c1d0aac6d74cba93b2130d41d8d097589af
Sha256
a172a452f5c589f377583762320267b2471d63e494ce11e8c69f1e52307cff63
Sha384
a126709ae707666392d54a5cf48cddd428dd46e4c92fce96c75ac5f2ae3fd976b209ebcb8de3b1263750e1b1179ef923
Sha512
9eb9ec15e727eeedd375bc431c61a37a7c5181ab77df3db6a003f5cf35e68d48945ac212d2f8f786270af885e4b6943a1d7a29bb27590ea960362cf8fbdbb56a
SSDeep
12288:iEa4FbgLXmLQMFnGBwebfaW++BcurooZCX1tjUPjrtiLwMQtk38POQ1BkjCzzQ:m4Q4nGGebffcuUoZCX1tUbrtErQtai
TLSH
F645DF0773AC2B4CE5BE4735B474023087B1BF03E6259A9DF5C5DDED1E70A8A6A062D2

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
54d02d0989767217139e1fde2423dbb6
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0032
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
banjomr.frmMergeExcels.resources
btnSetting.Image
[NBF]root.Data
[NBF]root.Data-preview.png
banjomr.frmNewInvoice.resources
banjomr.497826.jpg
292c9672205c29.Resources.resources
e21020bb0
[NBF]root.Data
e21020bb1
[NBF]root.Data
e21020bb10
[NBF]root.Data
e21020bb11
[NBF]root.Data
e21020bb12
[NBF]root.Data
e21020bb13
[NBF]root.Data
e21020bb14
[NBF]root.Data
e21020bb15
[NBF]root.Data
e21020bb16
[NBF]root.Data
e21020bb17
[NBF]root.Data
e21020bb18
[NBF]root.Data
e21020bb19
[NBF]root.Data
e21020bb2
[NBF]root.Data
e21020bb20
[NBF]root.Data
e21020bb21
[NBF]root.Data
e21020bb22
[NBF]root.Data
e21020bb23
[NBF]root.Data
e21020bb24
[NBF]root.Data
e21020bb25
[NBF]root.Data
e21020bb26
[NBF]root.Data
e21020bb27
[NBF]root.Data
e21020bb3
[NBF]root.Data
e21020bb4
[NBF]root.Data
e21020bb5
[NBF]root.Data
e21020bb6
[NBF]root.Data
e21020bb7
[NBF]root.Data
e21020bb8
[NBF]root.Data
e21020bb9
[NBF]root.Data
Informations
Name
 Value
Module Name

banjomr
Full Name

banjomr
EntryPoint

System.Void An5k.Kq38Myw::b2JHe()
Scope Name

banjomr
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

banjomr
Assembly Version

1.5.1.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

1524
Main Method

System.Void An5k.Kq38Myw::b2JHe()
Main IL Instruction Count

142
Main IL

nop <null> nop <null> newobj System.Void System.Windows.Forms.Form::.ctor() stloc.0 <null> ldloc.0 <null> ldstr My Application callvirt System.Void System.Windows.Forms.Form::set_Text(System.String) nop <null> ldloc.0 <null> ldc.i4 400 ldc.i4 300 newobj System.Void System.Drawing.Size::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Form::set_Size(System.Drawing.Size) nop <null> ldloc.0 <null> ldc.i4.1 <null> callvirt System.Void System.Windows.Forms.Form::set_StartPosition(System.Windows.Forms.FormStartPosition) nop <null> newobj System.Void System.Windows.Forms.Label::.ctor() stloc.1 <null> ldloc.1 <null> ldstr Application Running... callvirt System.Void System.Windows.Forms.Label::set_Text(System.String) nop <null> ldloc.1 <null> ldc.i4.s 10 ldc.i4.s 10 newobj System.Void System.Drawing.Point::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Control::set_Location(System.Drawing.Point) nop <null> ldloc.0 <null> callvirt System.Windows.Forms.Control/ControlCollection System.Windows.Forms.Control::get_Controls() ldloc.1 <null> callvirt System.Void System.Windows.Forms.Control/ControlCollection::Add(System.Windows.Forms.Control) nop <null> ldstr 497826.jpg stloc.2 <null> ldloc.2 <null> ldloca.s V_3 call System.Boolean System.DateTime::TryParse(System.String,System.DateTime&) pop <null> newobj System.Void System.Collections.Generic.List`1<System.Object>::.ctor() stloc.s V_4 ldloc.s V_4 call System.Reflection.Assembly System.Reflection.Assembly::GetExecutingAssembly() callvirt System.Void System.Collections.Generic.List`1<System.Object>::Add(System.Object) nop <null> ldloc.s V_4 callvirt System.Int32 System.Collections.Generic.List`1<System.Object>::get_Count() ldc.i4.0 <null> ceq <null> stloc.s V_9 ldloc.s V_9 brfalse.s IL_0099: ldloc.s V_4 leave IL_0167: ret ldloc.s V_4 ldc.i4.0 <null> callvirt System.Object System.Collections.Generic.List`1<System.Object>::get_Item(System.Int32) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.s V_5 ldloc.s V_5 ldnull <null> ldstr GetManifestResourceNames ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) castclass System.String[] stloc.s V_6 newobj System.Void System.Collections.Generic.Dictionary`2<System.Int32,System.String>::.ctor() stloc.s V_8 ldloc.s V_6 ldlen <null> conv.i4 <null> ldc.i4.1 <null> sub.ovf <null> stloc.s V_10 ldc.i4.0 <null> stloc.s V_7 br.s IL_00EE: ldloc.s V_7 ldloc.s V_8 ldloc.s V_7 ldloc.s V_6 ldloc.s V_7 ldelem.ref <null> callvirt System.Void System.Collections.Generic.Dictionary`2<System.Int32,System.String>::Add(System.Int32,System.String) nop <null> ldloc.s V_7 ldc.i4.1 <null> add.ovf <null> stloc.s V_7 ldloc.s V_7 ldloc.s V_10 ble.s IL_00D9: ldloc.s V_8 nop <null> ldloc.s V_8 callvirt System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String> System.Collections.Generic.Dictionary`2<System.Int32,System.String>::GetEnumerator() stloc.s V_11 br.s IL_012E: ldloca.s V_11 ldloca.s V_11 call System.Collections.Generic.KeyValuePair`2<System.Int32,System.String> System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String>::get_Current() stloc.s V_12 ldloca.s V_12 call System.String System.Collections.Generic.KeyValuePair`2<System.Int32,System.String>::get_Value() ldloc.2 <null> callvirt System.Boolean System.String::EndsWith(System.String) stloc.s V_13 ldloc.s V_13 brfalse.s IL_012C: nop ldloc.s V_4 ldloca.s V_12 call System.String System.Collections.Generic.KeyValuePair`2<System.Int32,System.String>::get_Value() callvirt System.Void System.Collections.Generic.List`1<System.Object>::Add(System.Object) nop <null> nop <null> nop <null> nop <null> ldloca.s V_11 call System.Boolean System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String>::MoveNext() stloc.s V_14 ldloc.s V_14 brtrue.s IL_0100: ldloca.s V_11 leave.s IL_014C: ldloc.s V_4 ldloca.s V_11 constrained. System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String> callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> ldloc.s V_4 call System.Void An5k.m0G6::c9M2(System.Collections.Generic.List`1<System.Object>) nop <null> leave.s IL_0166: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_15 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0166: nop nop <null> ret <null>
Module Name

banjomr
Full Name

banjomr
EntryPoint

System.Void An5k.Kq38Myw::b2JHe()
Scope Name

banjomr
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

banjomr
Assembly Version

1.5.1.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

1524
Main Method

System.Void An5k.Kq38Myw::b2JHe()
Main IL Instruction Count

142
Main IL

nop <null> nop <null> newobj System.Void System.Windows.Forms.Form::.ctor() stloc.0 <null> ldloc.0 <null> ldstr My Application callvirt System.Void System.Windows.Forms.Form::set_Text(System.String) nop <null> ldloc.0 <null> ldc.i4 400 ldc.i4 300 newobj System.Void System.Drawing.Size::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Form::set_Size(System.Drawing.Size) nop <null> ldloc.0 <null> ldc.i4.1 <null> callvirt System.Void System.Windows.Forms.Form::set_StartPosition(System.Windows.Forms.FormStartPosition) nop <null> newobj System.Void System.Windows.Forms.Label::.ctor() stloc.1 <null> ldloc.1 <null> ldstr Application Running... callvirt System.Void System.Windows.Forms.Label::set_Text(System.String) nop <null> ldloc.1 <null> ldc.i4.s 10 ldc.i4.s 10 newobj System.Void System.Drawing.Point::.ctor(System.Int32,System.Int32) callvirt System.Void System.Windows.Forms.Control::set_Location(System.Drawing.Point) nop <null> ldloc.0 <null> callvirt System.Windows.Forms.Control/ControlCollection System.Windows.Forms.Control::get_Controls() ldloc.1 <null> callvirt System.Void System.Windows.Forms.Control/ControlCollection::Add(System.Windows.Forms.Control) nop <null> ldstr 497826.jpg stloc.2 <null> ldloc.2 <null> ldloca.s V_3 call System.Boolean System.DateTime::TryParse(System.String,System.DateTime&) pop <null> newobj System.Void System.Collections.Generic.List`1<System.Object>::.ctor() stloc.s V_4 ldloc.s V_4 call System.Reflection.Assembly System.Reflection.Assembly::GetExecutingAssembly() callvirt System.Void System.Collections.Generic.List`1<System.Object>::Add(System.Object) nop <null> ldloc.s V_4 callvirt System.Int32 System.Collections.Generic.List`1<System.Object>::get_Count() ldc.i4.0 <null> ceq <null> stloc.s V_9 ldloc.s V_9 brfalse.s IL_0099: ldloc.s V_4 leave IL_0167: ret ldloc.s V_4 ldc.i4.0 <null> callvirt System.Object System.Collections.Generic.List`1<System.Object>::get_Item(System.Int32) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.s V_5 ldloc.s V_5 ldnull <null> ldstr GetManifestResourceNames ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) castclass System.String[] stloc.s V_6 newobj System.Void System.Collections.Generic.Dictionary`2<System.Int32,System.String>::.ctor() stloc.s V_8 ldloc.s V_6 ldlen <null> conv.i4 <null> ldc.i4.1 <null> sub.ovf <null> stloc.s V_10 ldc.i4.0 <null> stloc.s V_7 br.s IL_00EE: ldloc.s V_7 ldloc.s V_8 ldloc.s V_7 ldloc.s V_6 ldloc.s V_7 ldelem.ref <null> callvirt System.Void System.Collections.Generic.Dictionary`2<System.Int32,System.String>::Add(System.Int32,System.String) nop <null> ldloc.s V_7 ldc.i4.1 <null> add.ovf <null> stloc.s V_7 ldloc.s V_7 ldloc.s V_10 ble.s IL_00D9: ldloc.s V_8 nop <null> ldloc.s V_8 callvirt System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String> System.Collections.Generic.Dictionary`2<System.Int32,System.String>::GetEnumerator() stloc.s V_11 br.s IL_012E: ldloca.s V_11 ldloca.s V_11 call System.Collections.Generic.KeyValuePair`2<System.Int32,System.String> System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String>::get_Current() stloc.s V_12 ldloca.s V_12 call System.String System.Collections.Generic.KeyValuePair`2<System.Int32,System.String>::get_Value() ldloc.2 <null> callvirt System.Boolean System.String::EndsWith(System.String) stloc.s V_13 ldloc.s V_13 brfalse.s IL_012C: nop ldloc.s V_4 ldloca.s V_12 call System.String System.Collections.Generic.KeyValuePair`2<System.Int32,System.String>::get_Value() callvirt System.Void System.Collections.Generic.List`1<System.Object>::Add(System.Object) nop <null> nop <null> nop <null> nop <null> ldloca.s V_11 call System.Boolean System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String>::MoveNext() stloc.s V_14 ldloc.s V_14 brtrue.s IL_0100: ldloca.s V_11 leave.s IL_014C: ldloc.s V_4 ldloca.s V_11 constrained. System.Collections.Generic.Dictionary`2/Enumerator<System.Int32,System.String> callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> ldloc.s V_4 call System.Void An5k.m0G6::c9M2(System.Collections.Generic.List`1<System.Object>) nop <null> leave.s IL_0166: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_15 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0166: nop nop <null> ret <null>
54d02d0989767217139e1fde2423dbb6 (1.21 MB)
File Structure
54d02d0989767217139e1fde2423dbb6
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0032
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
banjomr.frmMergeExcels.resources
btnSetting.Image
[NBF]root.Data
[NBF]root.Data-preview.png
banjomr.frmNewInvoice.resources
banjomr.497826.jpg
292c9672205c29.Resources.resources
e21020bb0
[NBF]root.Data
e21020bb1
[NBF]root.Data
e21020bb10
[NBF]root.Data
e21020bb11
[NBF]root.Data
e21020bb12
[NBF]root.Data
e21020bb13
[NBF]root.Data
e21020bb14
[NBF]root.Data
e21020bb15
[NBF]root.Data
e21020bb16
[NBF]root.Data
e21020bb17
[NBF]root.Data
e21020bb18
[NBF]root.Data
e21020bb19
[NBF]root.Data
e21020bb2
[NBF]root.Data
e21020bb20
[NBF]root.Data
e21020bb21
[NBF]root.Data
e21020bb22
[NBF]root.Data
e21020bb23
[NBF]root.Data
e21020bb24
[NBF]root.Data
e21020bb25
[NBF]root.Data
e21020bb26
[NBF]root.Data
e21020bb27
[NBF]root.Data
e21020bb3
[NBF]root.Data
e21020bb4
[NBF]root.Data
e21020bb5
[NBF]root.Data
e21020bb6
[NBF]root.Data
e21020bb7
[NBF]root.Data
e21020bb8
[NBF]root.Data
e21020bb9
[NBF]root.Data
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙