Suspicious
Suspect

6faebc731b3f26f52538e43d1330f3df

PE Executable
|
MD5: 6faebc731b3f26f52538e43d1330f3df
|
Size: 772.1 KB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very low

Hash
 Hash Value
MD5
6faebc731b3f26f52538e43d1330f3df
Sha1
41b68db65747a6896021398291f50c7ad60d0dfc
Sha256
28dd00c9360fc7d7359113ee5599e0d902fdab71305d9f8ac52e97ccdfb1858b
Sha384
305ee079492a663c6b4acae2bf46498892a0cef009710c19c87c301d589cf165950765a6be24d8f4050b26ef3ed5de7c
Sha512
7e4b04891af58cc5311811234ba0ba3978779d513cb7312c1253da7f70379ef21a91fd1fde6453f77e85f5b8ca2521abc81e66ecbed3b9df77b2b9fca868fc65
SSDeep
12288:iV1/3plPNpoMVOLB1GDOdNsK16cVIgFbjZHiq15JKTvBMdGp4Tw1D3UOvtftw3M:KF5lPNO9LB0DSNZAcVIg9jt4P4w7BtqM
TLSH
2CF40105A435DE02C0A60BB4AB21DCB0537BAD8CB425E7135DEABCDBB37B78150C1A5B

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
6faebc731b3f26f52538e43d1330f3df
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
DamassaProject.fmrAdministrador.resources
DamassaProject.fmrListarUsuario.resources
$this.Icon
[NBF]root.IconData
MR
[NBF]root.Data
usuarioRepositoryBindingSource.TrayLocation
DamassaProject.fmrLogin.resources
pic_Imagem.BackgroundImage
[NBF]root.Data
[NBF]root.Data-preview.png
pic_Logo.BackgroundImage
[NBF]root.Data
[NBF]root.Data-preview.png
DamassaProject.fmrSplash.resources
pic_Image.BackgroundImage
[NBF]root.Data
[NBF]root.Data-preview.png
DamassaProject.Properties.Resources.resources
opQb
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
Name
 Value
Module Name

dvrX.exe
Full Name

dvrX.exe
EntryPoint

System.Void DamassaProject.Program::Main()
Scope Name

dvrX.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

dvrX
Assembly Version

1.3.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5
Total Strings

230
Main Method

System.Void DamassaProject.Program::Main()
Main IL Instruction Count

10
Main IL

nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void DamassaProject.fmrListarUsuario::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null>
Module Name

dvrX.exe
Full Name

dvrX.exe
EntryPoint

System.Void DamassaProject.Program::Main()
Scope Name

dvrX.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

dvrX
Assembly Version

1.3.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5
Total Strings

230
Main Method

System.Void DamassaProject.Program::Main()
Main IL Instruction Count

10
Main IL

nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void DamassaProject.fmrListarUsuario::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null>
Artefacts
Name
 Value
PDB Path

C:\Users\Administrator\Desktop\Client\Temp\tTAKGtSOUw\src\obj\Debug\dvrX.pdb
Embedded Resources

7
Suspicious Type Names (1-2 chars)

0
6faebc731b3f26f52538e43d1330f3df (772.1 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙