General
Structural Analysis
Config.0
Yara Rules16
Sync
Community
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Low
|
Hash | Hash Value |
|---|---|
| MD5 | 6528d33b73cc5e32e37a8af981961f3c
|
| Sha1 | e47a44379d67e03505d8b70bd7a5689b2bb88d94
|
| Sha256 | fbe9cbd20b1447fbc3005d50bd5b969b509266cab8b1fe3cf385506815d650aa
|
| Sha384 | 7eadfbf97b83c89f7ced88f736790bcd5ba96f3ba3faa50f20dd864087a48cfcdba60b5c9f5d5e04e6de6933ea1b7da1
|
| Sha512 | bd9938ea2c6591e457a1c4c0937a90b80eaf6a545e8b129ac93f257f8726bf46cc18dc0bda400e38f8c10aeab99f82b2612b687b40869e84626f8410d4454457
|
| SSDeep | 6144:skktfRXbRsl0UfCsuDDMTk90lLPFUQ4n+FEpmQKvhEsp14kIbhZRJ63:K8gMT9PFFU+FEfqhEPBz63
|
| TLSH | F2944B0C27AC9A33DB0F3B3DFC712519E3BCE00B514B9B1EA697E9AD28533228525557
|
PeID
Microsoft Visual C# / Basic .NET
File Structure
6528d33b73cc5e32e37a8af981961f3c
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
Microsoft.Win32.TaskScheduler.Properties.Resources.resources
Microsoft.Win32.TaskScheduler.TaskService.bmp
mJNL
uEZFP
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: F:\Hacking\TaskScheduler-2.12.2\TaskScheduler-2.12.2\TaskService\bin\Debug\net45\obf_Microsoft.Win32.TaskScheduler.pdb |
| Module Name | obf_Microsoft.Win32.TaskScheduler.dll |
| Full Name | obf_Microsoft.Win32.TaskScheduler.dll |
| Scope Name | obf_Microsoft.Win32.TaskScheduler.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Microsoft.Win32.TaskScheduler |
| Assembly Version | 2.12.2.0 |
| Assembly Culture | <null> |
| Has PublicKey | True |
| PublicKey Token | 2806574b39b74d4b |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 98 |
| Main Method | Not found or no body |
| Module Name | obf_Microsoft.Win32.TaskScheduler.dll |
| Full Name | obf_Microsoft.Win32.TaskScheduler.dll |
| Scope Name | obf_Microsoft.Win32.TaskScheduler.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Microsoft.Win32.TaskScheduler |
| Assembly Version | 2.12.2.0 |
| Assembly Culture | <null> |
| Has PublicKey | True |
| PublicKey Token | 2806574b39b74d4b |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 98 |
| Main Method | Not found or no body |
6528d33b73cc5e32e37a8af981961f3c (413.18 KB)
File Structure
6528d33b73cc5e32e37a8af981961f3c
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
Microsoft.Win32.TaskScheduler.Properties.Resources.resources
Microsoft.Win32.TaskScheduler.TaskService.bmp
mJNL
uEZFP
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.