5e003f02cab7fbe9c8e44a75e022765e

PE Executable
|
MD5: 5e003f02cab7fbe9c8e44a75e022765e
|
Size: 1.32 MB
|
application/x-dosexec

Summary by MalvaGPT

Characteristics

Hash	Hash Value
MD5	5e003f02cab7fbe9c8e44a75e022765e
Sha1	89ff802418be6161945a44d39767a8f91af64708
Sha256	6c22a1818f78be2dd32749140bfcaa6d930cf94984f1c58a8f21c1a2b0b27e35
Sha384	2195110f4eaf2fe76c78052654da311e94beff2cc1742e1244df62ac10656b04e84f64868b65b60c28e09f0865cc87e3
Sha512	193caa09706f4fff3f65025e2cf72c66944b98a6cbff67abf565d321ceeea6c74e915821f5a47be49a46230206207c914961ff4afe36d8471614bc71624805d7
SSDeep	24576:JENG924i9jdSbFgDBmbyG/SCnRveYepqMKDmfC4KOSSn2I6uf:qPXSJg0byG/bRveYkqM3fC41p2
TLSH	1955F12E37CF4EC8D4BAEB74EB775A1803F1A31FC922D75BE98121D889527069021767

PeID

.NET executable

Microsoft Visual C# / Basic .NET

Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL

Microsoft Visual C# v7.0 / Basic .NET

Microsoft Visual Studio .NET

File Structure

Informations

Name0	Value
Info	PE Detect: PeReader OK (file layout)
Module Name	Ppw3t
Full Name	Ppw3t
EntryPoint	System.Void Ppw3t.8fgMepY1Kg6::Qtk19oYp()
Scope Name	Ppw3t
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	Ppw3t
Assembly Version	14.6.6.151
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	981
Main Method	System.Void Ppw3t.8fgMepY1Kg6::Qtk19oYp()
Main IL Instruction Count	125
Main IL	nop <null> nop <null> ldc.i4.s 20 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> call System.Byte[] Ppw3t.gRj9q::Gg7tdQ() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stloc.0 <null> ldloc.0 <null> ldlen <null> conv.i4 <null> ldc.i4.1 <null> sub.ovf <null> stloc.s V_4 ldc.i4.0 <null> stloc.s V_5 br.s IL_0049: ldloc.s V_5 ldloc.s V_5 ldc.i4.8 <null> rem <null> ldc.i4.0 <null> ceq <null> stloc.s V_6 ldloc.s V_6 brfalse.s IL_0042: nop ldloc.0 <null> ldloc.s V_5 ldloc.0 <null> ldloc.s V_5 ldelem.u1 <null> ldc.i4 211 xor <null> stelem.i1 <null> nop <null> nop <null> ldloc.s V_5 ldc.i4.1 <null> add.ovf <null> stloc.s V_5 ldloc.s V_5 ldloc.s V_4 ble.s IL_0026: ldloc.s V_5 ldloc.0 <null> call System.Reflection.Assembly System.Reflection.Assembly::Load(System.Byte[]) stloc.1 <null> ldloc.1 <null> callvirt System.Type[] System.Reflection.Assembly::GetTypes() stloc.2 <null> ldloc.2 <null> ldlen <null> conv.i4 <null> ldc.i4.s 24 cgt <null> ldc.i4.0 <null> ceq <null> stloc.s V_7 ldloc.s V_7 brfalse.s IL_006F: ldloc.2 leave.s IL_00EA: ret ldloc.2 <null> ldc.i4.s 24 ldelem.ref <null> stloc.3 <null> ldloc.3 <null> ldnull <null> ceq <null> stloc.s V_8 ldloc.s V_8 brfalse.s IL_0080: ldloc.3 leave.s IL_00EA: ret ldloc.3 <null> ldc.i4.s 56 callvirt System.Reflection.MethodInfo[] System.Type::GetMethods(System.Reflection.BindingFlags) stloc.s V_9 ldc.i4.0 <null> stloc.s V_10 br.s IL_00CC: ldloc.s V_10 ldloc.s V_9 ldloc.s V_10 ldelem.ref <null> stloc.s V_11 ldloc.s V_11 callvirt System.Reflection.ParameterInfo[] System.Reflection.MethodBase::GetParameters() ldlen <null> conv.i4 <null> ldc.i4.0 <null> ceq <null> stloc.s V_12 ldloc.s V_12 brfalse.s IL_00C4: nop nop <null> ldloc.s V_11 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_00C2: nop call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00C2: nop nop <null> nop <null> nop <null> nop <null> ldloc.s V_10 ldc.i4.1 <null> add.ovf <null> stloc.s V_10 ldloc.s V_10 ldloc.s V_9 ldlen <null> conv.i4 <null> clt <null> stloc.s V_13 ldloc.s V_13 brtrue.s IL_008F: ldloc.s V_9 leave.s IL_00E9: nop call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00E9: nop nop <null> ret <null>
Module Name	Ppw3t
Full Name	Ppw3t
EntryPoint	System.Void Ppw3t.8fgMepY1Kg6::Qtk19oYp()
Scope Name	Ppw3t
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	Ppw3t
Assembly Version	14.6.6.151
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.6
Total Strings	981
Main Method	System.Void Ppw3t.8fgMepY1Kg6::Qtk19oYp()
Main IL Instruction Count	125
Main IL	nop <null> nop <null> ldc.i4.s 20 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> call System.Byte[] Ppw3t.gRj9q::Gg7tdQ() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stloc.0 <null> ldloc.0 <null> ldlen <null> conv.i4 <null> ldc.i4.1 <null> sub.ovf <null> stloc.s V_4 ldc.i4.0 <null> stloc.s V_5 br.s IL_0049: ldloc.s V_5 ldloc.s V_5 ldc.i4.8 <null> rem <null> ldc.i4.0 <null> ceq <null> stloc.s V_6 ldloc.s V_6 brfalse.s IL_0042: nop ldloc.0 <null> ldloc.s V_5 ldloc.0 <null> ldloc.s V_5 ldelem.u1 <null> ldc.i4 211 xor <null> stelem.i1 <null> nop <null> nop <null> ldloc.s V_5 ldc.i4.1 <null> add.ovf <null> stloc.s V_5 ldloc.s V_5 ldloc.s V_4 ble.s IL_0026: ldloc.s V_5 ldloc.0 <null> call System.Reflection.Assembly System.Reflection.Assembly::Load(System.Byte[]) stloc.1 <null> ldloc.1 <null> callvirt System.Type[] System.Reflection.Assembly::GetTypes() stloc.2 <null> ldloc.2 <null> ldlen <null> conv.i4 <null> ldc.i4.s 24 cgt <null> ldc.i4.0 <null> ceq <null> stloc.s V_7 ldloc.s V_7 brfalse.s IL_006F: ldloc.2 leave.s IL_00EA: ret ldloc.2 <null> ldc.i4.s 24 ldelem.ref <null> stloc.3 <null> ldloc.3 <null> ldnull <null> ceq <null> stloc.s V_8 ldloc.s V_8 brfalse.s IL_0080: ldloc.3 leave.s IL_00EA: ret ldloc.3 <null> ldc.i4.s 56 callvirt System.Reflection.MethodInfo[] System.Type::GetMethods(System.Reflection.BindingFlags) stloc.s V_9 ldc.i4.0 <null> stloc.s V_10 br.s IL_00CC: ldloc.s V_10 ldloc.s V_9 ldloc.s V_10 ldelem.ref <null> stloc.s V_11 ldloc.s V_11 callvirt System.Reflection.ParameterInfo[] System.Reflection.MethodBase::GetParameters() ldlen <null> conv.i4 <null> ldc.i4.0 <null> ceq <null> stloc.s V_12 ldloc.s V_12 brfalse.s IL_00C4: nop nop <null> ldloc.s V_11 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_00C2: nop call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00C2: nop nop <null> nop <null> nop <null> nop <null> ldloc.s V_10 ldc.i4.1 <null> add.ovf <null> stloc.s V_10 ldloc.s V_10 ldloc.s V_9 ldlen <null> conv.i4 <null> clt <null> stloc.s V_13 ldloc.s V_13 brtrue.s IL_008F: ldloc.s V_9 leave.s IL_00E9: nop call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00E9: nop nop <null> ret <null>

5e003f02cab7fbe9c8e44a75e022765e (1.32 MB)

File Structure

Characteristics

No malware configuration were found at this point.

You must be signed in to post a comment.

5e003f02cab7fbe9c8e44a75e022765e

PE Executable | MD5: 5e003f02cab7fbe9c8e44a75e022765e | Size: 1.32 MB | application/x-dosexec

PE Executable
|
MD5: 5e003f02cab7fbe9c8e44a75e022765e
|
Size: 1.32 MB
|
application/x-dosexec