Malicious
Malicious

79f89f9fb551df4f293b2f4355594ec8

PE Executable
|
MD5: 79f89f9fb551df4f293b2f4355594ec8
|
Size: 161.28 KB
|
application/x-dosexec

Print
Infection Chain
Summary by MalvaGPT
Characteristics

Symbol Obfuscation Score

Very high

Hash
 Hash Value
MD5
79f89f9fb551df4f293b2f4355594ec8
Sha1
8de854f6cc23a65c615b41c675811d64f0914a13
Sha256
e987298796ba6f43621430775536a346473dd2fdfaf5a99116132df7f8f96f13
Sha384
ab1f1be0bf836eac09b87ea53a0f758acfa94947bee7b36c5559c0c17cbd28c9a83dd7d8a3398467656995435b46feb2
Sha512
bb1d672b8b49f0c71e488f03ccf9df6ee702b893774fbd5ad90a8d3c5ea04f244ca51e5b7c3910f43fdb6e70f6239ec8c8543748917f0cdfaaaf6b8945fd77fe
SSDeep
3072:hDXCIaAiBxFlbLLzMc4awOdpQvBUwOrNlDXBlh/1KtAOMF2S:H2xFBLLzJmOAvBkPDXBRKtGIS
TLSH
48F3C76BB984CB15EA582875C4DFA43003E2ADC71733F3853F4876A91D423E69D4ABC9

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
79f89f9fb551df4f293b2f4355594ec8
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.sdata
.rsrc
.reloc
Resources
RT_MANIFEST
ID:0001
ID:0
.Net Resources
EIhxfDDArfbhLxtFtZ.HcrTk9EEeAKRdFIKtC
oRZx16HSEUZAl97UTn.BQPnOpIWEeM9ApmFx1
79kRNJBh7QPf1cGOvP.44r55DCynIT9onWVTV
v5RQ4nFNqeOqXbcHif.Kahqh5G3i2xrkndMaD
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

Stub.exe
Full Name

Stub.exe
EntryPoint

System.Void EJCNLOIHIPPHEIGBDHDLCKLDMHMAMMDDOOPJ.ICBENBAADPGIKHNJLADFGMAMLNHOOOBKPCCD::FMMMELCOGIHENBGNHCIBJCOPHBPIBJNMNKHC()
Scope Name

Stub.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v2.0.50727
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Stub
Assembly Version

0.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

<null>
Total Strings

18
Main Method

System.Void EJCNLOIHIPPHEIGBDHDLCKLDMHMAMMDDOOPJ.ICBENBAADPGIKHNJLADFGMAMLNHOOOBKPCCD::FMMMELCOGIHENBGNHCIBJCOPHBPIBJNMNKHC()
Main IL Instruction Count

8
Main IL

br IL_0007: call System.Void AHGBLCNAJPJLLADPGOPGLGIFABKGDICCEAGA.JPIGAIGLMLGAPAPCOMNMCOFGCCHOODAODJNE::NHAIDFIDEJDEJHBJNIBHFHIBFAMHHDAHFHKC() pop <null> ldc.i4.0 <null> call System.Void AHGBLCNAJPJLLADPGOPGLGIFABKGDICCEAGA.JPIGAIGLMLGAPAPCOMNMCOFGCCHOODAODJNE::NHAIDFIDEJDEJHBJNIBHFHIBFAMHHDAHFHKC() nop <null> call System.Void EJCNLOIHIPPHEIGBDHDLCKLDMHMAMMDDOOPJ.KCMOEMHLHEDHCFBJJNKAEADDLFLFHEGJIEOP::PEOFIFIJHOCAHDBPKBMMJELKDBMFKOGGBJNI() nop <null> ret <null>
Module Name

Stub.exe
Full Name

Stub.exe
EntryPoint

System.Void EJCNLOIHIPPHEIGBDHDLCKLDMHMAMMDDOOPJ.ICBENBAADPGIKHNJLADFGMAMLNHOOOBKPCCD::FMMMELCOGIHENBGNHCIBJCOPHBPIBJNMNKHC()
Scope Name

Stub.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v2.0.50727
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Stub
Assembly Version

0.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

<null>
Total Strings

18
Main Method

System.Void EJCNLOIHIPPHEIGBDHDLCKLDMHMAMMDDOOPJ.ICBENBAADPGIKHNJLADFGMAMLNHOOOBKPCCD::FMMMELCOGIHENBGNHCIBJCOPHBPIBJNMNKHC()
Main IL Instruction Count

8
Main IL

br IL_0007: call System.Void AHGBLCNAJPJLLADPGOPGLGIFABKGDICCEAGA.JPIGAIGLMLGAPAPCOMNMCOFGCCHOODAODJNE::NHAIDFIDEJDEJHBJNIBHFHIBFAMHHDAHFHKC() pop <null> ldc.i4.0 <null> call System.Void AHGBLCNAJPJLLADPGOPGLGIFABKGDICCEAGA.JPIGAIGLMLGAPAPCOMNMCOFGCCHOODAODJNE::NHAIDFIDEJDEJHBJNIBHFHIBFAMHHDAHFHKC() nop <null> call System.Void EJCNLOIHIPPHEIGBDHDLCKLDMHMAMMDDOOPJ.KCMOEMHLHEDHCFBJJNKAEADDLFLFHEGJIEOP::PEOFIFIJHOCAHDBPKBMMJELKDBMFKOGGBJNI() nop <null> ret <null>
79f89f9fb551df4f293b2f4355594ec8 (161.28 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙