56e257f481be84feb046cb2a82a89fca

PE Executable
|
MD5: 56e257f481be84feb046cb2a82a89fca
|
Size: 12.28 MB
|
application/x-dosexec

Summary by MalvaGPT

Characteristics

Hash	Hash Value
MD5	56e257f481be84feb046cb2a82a89fca
Sha1	cdceb4a49b9d09cffd19cac5241aab3ec5ded43c
Sha256	20fb502b4133cd354c56502fcf3813844020773bc806682efebd217b47d394cf
Sha384	ce9b185c78a57941cbce223bc64a4a2c57030da77726d7f19acee5b52db01e7439349d94102fd42a85777e1b2e454927
Sha512	1ca7c5d92876e9bfe1805bddce2eeeb5aba450dffeeed353122a32fb97aff976ad40510e7e373eaaba41017839a09a895d3e1ecd59a326136e928175f95e62ee
SSDeep	98304:l0trB03LpTThUMidHSCOX32FAhpWYZxlxA+13Y:p39h9iXcDUqlH13
TLSH	0CC6341B6AE301B5E4E9CE34A7B944FC46F16B2F5620B7BB154012F8CE6074A75236B3

PeID

.NET executable

Microsoft Visual C# / Basic .NET

Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL

Microsoft Visual C# v7.0 / Basic .NET

Microsoft Visual Studio .NET

File Structure

Informations

Name0	Value
Info	PE Detect: PeReader OK (file layout)
Info	Overlay extracted: Overlay_0965586d.bin (4975608 bytes)
Module Name	fXt46boBycQ5r
Full Name	fXt46boBycQ5r
EntryPoint	System.Void fXt46boBycQ5r.6Kbyw1x::kXa03()
Scope Name	fXt46boBycQ5r
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	fXt46boBycQ5r
Assembly Version	18.0.240.0
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	1862
Main Method	System.Void fXt46boBycQ5r.6Kbyw1x::kXa03()
Main IL Instruction Count	86
Main IL	nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> nop <null> ldstr Initializing... stloc.1 <null> call System.OperatingSystem System.Environment::get_OSVersion() callvirt System.Version System.OperatingSystem::get_Version() callvirt System.Int32 System.Version::get_Major() ldc.i4.6 <null> clt <null> ldc.i4.0 <null> ceq <null> stloc.s V_4 ldloc.s V_4 brfalse.s IL_0037: nop call System.Boolean fXt46boBycQ5r.6Kbyw1x::Xeq51mLbaR() pop <null> nop <null> nop <null> newobj System.Void fXt46boBycQ5r.ap5BP::.ctor() call System.Object fXt46boBycQ5r.Ptt23gHxfQ::ag9Ha0Td7Jbk() call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) call System.Collections.Generic.List`1<System.Byte> fXt46boBycQ5r.6Kbyw1x::9xnY_(System.Object) callvirt System.Byte[] System.Collections.Generic.List`1<System.Byte>::ToArray() ldc.i4.s 9 newarr System.String dup <null> ldc.i4.0 <null> ldstr 117 stelem.ref <null> dup <null> ldc.i4.1 <null> ldstr 114 stelem.ref <null> dup <null> ldc.i4.2 <null> ldstr 106 stelem.ref <null> dup <null> ldc.i4.3 <null> ldstr 110 stelem.ref <null> dup <null> ldc.i4.4 <null> ldstr 118 stelem.ref <null> dup <null> ldc.i4.5 <null> ldstr 117 stelem.ref <null> dup <null> ldc.i4.6 <null> ldstr 97 stelem.ref <null> dup <null> ldc.i4.7 <null> ldstr 98 stelem.ref <null> dup <null> ldc.i4.8 <null> ldstr 111 stelem.ref <null> ldsfld System.Int32 fXt46boBycQ5r.Ptt23gHxfQ/8CorfiE.2GszRfy69::1giSm4Rrtp8Dj2 call System.Object fXt46boBycQ5r.ap5BP::4mjJRc8w(System.Byte[],System.String[],System.Int32) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.2 <null> ldc.r8 1.087 stloc.0 <null> ldloc.2 <null> call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) call System.Object fXt46boBycQ5r.Ptt23gHxfQ::5Pjfc4yMg(System.Object) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.3 <null> leave.s IL_00DD: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_5 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00DD: nop nop <null> ret <null>
Module Name	fXt46boBycQ5r
Full Name	fXt46boBycQ5r
EntryPoint	System.Void fXt46boBycQ5r.6Kbyw1x::kXa03()
Scope Name	fXt46boBycQ5r
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	fXt46boBycQ5r
Assembly Version	18.0.240.0
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	1862
Main Method	System.Void fXt46boBycQ5r.6Kbyw1x::kXa03()
Main IL Instruction Count	86
Main IL	nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> nop <null> ldstr Initializing... stloc.1 <null> call System.OperatingSystem System.Environment::get_OSVersion() callvirt System.Version System.OperatingSystem::get_Version() callvirt System.Int32 System.Version::get_Major() ldc.i4.6 <null> clt <null> ldc.i4.0 <null> ceq <null> stloc.s V_4 ldloc.s V_4 brfalse.s IL_0037: nop call System.Boolean fXt46boBycQ5r.6Kbyw1x::Xeq51mLbaR() pop <null> nop <null> nop <null> newobj System.Void fXt46boBycQ5r.ap5BP::.ctor() call System.Object fXt46boBycQ5r.Ptt23gHxfQ::ag9Ha0Td7Jbk() call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) call System.Collections.Generic.List`1<System.Byte> fXt46boBycQ5r.6Kbyw1x::9xnY_(System.Object) callvirt System.Byte[] System.Collections.Generic.List`1<System.Byte>::ToArray() ldc.i4.s 9 newarr System.String dup <null> ldc.i4.0 <null> ldstr 117 stelem.ref <null> dup <null> ldc.i4.1 <null> ldstr 114 stelem.ref <null> dup <null> ldc.i4.2 <null> ldstr 106 stelem.ref <null> dup <null> ldc.i4.3 <null> ldstr 110 stelem.ref <null> dup <null> ldc.i4.4 <null> ldstr 118 stelem.ref <null> dup <null> ldc.i4.5 <null> ldstr 117 stelem.ref <null> dup <null> ldc.i4.6 <null> ldstr 97 stelem.ref <null> dup <null> ldc.i4.7 <null> ldstr 98 stelem.ref <null> dup <null> ldc.i4.8 <null> ldstr 111 stelem.ref <null> ldsfld System.Int32 fXt46boBycQ5r.Ptt23gHxfQ/8CorfiE.2GszRfy69::1giSm4Rrtp8Dj2 call System.Object fXt46boBycQ5r.ap5BP::4mjJRc8w(System.Byte[],System.String[],System.Int32) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.2 <null> ldc.r8 1.087 stloc.0 <null> ldloc.2 <null> call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) call System.Object fXt46boBycQ5r.Ptt23gHxfQ::5Pjfc4yMg(System.Object) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.3 <null> leave.s IL_00DD: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_5 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00DD: nop nop <null> ret <null>

56e257f481be84feb046cb2a82a89fca (12.28 MB)

56e257f481be84feb046cb2a82a89fca

PE Executable | MD5: 56e257f481be84feb046cb2a82a89fca | Size: 12.28 MB | application/x-dosexec

PE Executable
|
MD5: 56e257f481be84feb046cb2a82a89fca
|
Size: 12.28 MB
|
application/x-dosexec