Suspicious
Suspect

5a766fb66446e2c4d436167ef0944eb1

PE Executable
|
MD5: 5a766fb66446e2c4d436167ef0944eb1
|
Size: 8.01 MB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
5a766fb66446e2c4d436167ef0944eb1
Sha1
845b9220d3cebd020193bf6328f51076c9aebcbd
Sha256
53ab4a93b93223968cf2e71ea8070ba2d7e1a9010d21d41e25100e2b6ab516d9
Sha384
aba3f60f011a98df51da9594429e059c2406b63f611ec0df6ba89de06ad1d111c9562b5e5b5c72899050e8fd6a3e2913
Sha512
9ab91253ac1a16eb50f097a37e16301252e58f53b060720f53cfed1f9c928af021c65e6b3fa783fbb1776ec7075575a97ab8a4ac213ad351f1410d1b33a49eed
SSDeep
196608:uWAeGDVKsgnMV7sZlqrdXUVp5eTM0mnTU3Xp:uW6D8tMV7sZcZXUofmnTw5
TLSH
19863390D341BD01CEAAF4B45932E6BD62831F0E07C3DE891ACD4E2BBD525661F991EC

PeID

Microsoft Visual C++ v6.0 DLL
File Structure
5a766fb66446e2c4d436167ef0944eb1
[NSIS Installer] @ #00012608
[SETUP_DECOMPILED.NSI]
Overlay_55b8823a.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.ndata
.rsrc
Resources
RT_ICON
ID:0001
ID:1033
ID:0002
ID:1033
ID:0003
ID:1033
ID:0004
ID:1033
ID:1033-preview.png
RT_DIALOG
ID:0069
ID:1033
ID:006A
ID:1033
ID:006F
ID:1033
RT_GROUP_CURSOR4
ID:0067
ID:1033
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

Overlay extracted: Overlay_55b8823a.bin (7939699 bytes)
5a766fb66446e2c4d436167ef0944eb1 (8.01 MB)
File Structure
5a766fb66446e2c4d436167ef0944eb1
[NSIS Installer] @ #00012608
[SETUP_DECOMPILED.NSI]
Overlay_55b8823a.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.ndata
.rsrc
Resources
RT_ICON
ID:0001
ID:1033
ID:0002
ID:1033
ID:0003
ID:1033
ID:0004
ID:1033
ID:1033-preview.png
RT_DIALOG
ID:0069
ID:1033
ID:006A
ID:1033
ID:006F
ID:1033
RT_GROUP_CURSOR4
ID:0067
ID:1033
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙