Suspicious
Suspect

61cb2920119c1814e74d249f871db2bd

PE Executable
|
MD5: 61cb2920119c1814e74d249f871db2bd
|
Size: 61.44 KB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Medium

Hash
 Hash Value
MD5
61cb2920119c1814e74d249f871db2bd
Sha1
11f6af01361c283b009e5abf23bd9953f9f12fe9
Sha256
04bb87af9d457db9e52f561272e1702ec4df1c9c569a3c3c1d67f57dec95a5ae
Sha384
f374d8a60888cc31bcf822bb47eb1d379d70bda8ccf6c8f5b0f4c1c01000d81257328452fc98aba274ce32ff9205e36f
Sha512
6bb1202d2ffe7f38b7d0cab6bd6e0ba4e3d045fce04d0bd14169ae4ed61b5ac6b10da070848f5f90d181825f45773c1cee6947c58fe5da2c15086ce980483f13
SSDeep
768:jKwtWGlreV4xkOE5k26rcu97SfxVEPhfooCvCGPjknTayqUUmqFXzpRsDEngwsF4:esrvSOEk2fStooCq4kntq5zo4nnC0N
TLSH
6C53C76E13ECCAB3CBEE097DD47318058A71C95B2962F347BD9C9972A4163CCA4193D2

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
61cb2920119c1814e74d249f871db2bd
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
ZetaLongPaths.Properties.Resources.resources
       ​    
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

Yahylhhdz.exe
Full Name

Yahylhhdz.exe
EntryPoint

System.Void  ::()
Scope Name

Yahylhhdz.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Yahylhhdz
Assembly Version

1.0.7546.3221
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

0
Main Method

System.Void  ::()
Main IL Instruction Count

2
Main IL

call System.Void  ::() ret <null>
Module Name

Yahylhhdz.exe
Full Name

Yahylhhdz.exe
EntryPoint

System.Void  ::()
Scope Name

Yahylhhdz.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Yahylhhdz
Assembly Version

1.0.7546.3221
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

0
Main Method

System.Void  ::()
Main IL Instruction Count

2
Main IL

call System.Void  ::() ret <null>
61cb2920119c1814e74d249f871db2bd (61.44 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙