General
Structural Analysis
Config.0
Yara Rules15
Sync
Community
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 57ac1a209a55298720bf050812c1ec40
|
| Sha1 | 462dbd5d02542f713a67000d327cc04f52e4f704
|
| Sha256 | 164406a15fdde9b61ff47c268b9853bde4284f854b50975e2ccd648180d1dd97
|
| Sha384 | 6d93189e720f2857a7ecdd546b60db41b939a7212a51b4b223ddb68555dbfdec5c094b944092d418269c95b1d7219d50
|
| Sha512 | 455588b8d01988bf6c8756ff665af68eeb78f1052afcd438b5dabdf5369b14003ecbf6ce015f37853c47de5b6c14f10e7b3f46331aab00bb8b401f40f91d9a0e
|
| SSDeep | 12288:WN2N7fN2jNouec0DW4fuedxRaJnCHFxIdOQ2RxkRh8iP/ZT0erQtZydyIBvguY9P:WN2r2j6dDDfBxRhbjxI5/Np/eH
|
| TLSH | 580575342EEA1029F177AF7D8AE47596EA6EB6A33707994D00B103C60723B42DDD153E
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
57ac1a209a55298720bf050812c1ec40
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | oNhln9lq3i |
| Full Name | oNhln9lq3i |
| EntryPoint | System.Void 74V.PEs::627() |
| Scope Name | oNhln9lq3i |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | DB9farRJATwBRmyX |
| Assembly Version | 6.7.3.8 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 1779 |
| Main Method | System.Void 74V.PEs::627() |
| Main IL Instruction Count | 5 |
| Main IL | nop <null> ldsfld ab2.2J2 74V.PEs::792 callvirt System.Void ab2.2J2::nC6() nop <null> ret <null> |
| Module Name | oNhln9lq3i |
| Full Name | oNhln9lq3i |
| EntryPoint | System.Void 74V.PEs::627() |
| Scope Name | oNhln9lq3i |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | DB9farRJATwBRmyX |
| Assembly Version | 6.7.3.8 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 1779 |
| Main Method | System.Void 74V.PEs::627() |
| Main IL Instruction Count | 5 |
| Main IL | nop <null> ldsfld ab2.2J2 74V.PEs::792 callvirt System.Void ab2.2J2::nC6() nop <null> ret <null> |
57ac1a209a55298720bf050812c1ec40 (802.3 KB)
File Structure
57ac1a209a55298720bf050812c1ec40
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:1033
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.