Suspect
83c05d4eb01c6e90dcd25d427ceb2a14
PE Executable | MD5: 83c05d4eb01c6e90dcd25d427ceb2a14 | Size: 937.48 KB | application/x-dosexec
PE Executable
MD5: 83c05d4eb01c6e90dcd25d427ceb2a14
Size: 937.48 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | 83c05d4eb01c6e90dcd25d427ceb2a14
|
| Sha1 | 8ada123c67d245e47e55575c9945677a39921bbd
|
| Sha256 | abd56fe04c36d4373ea9cc53efa0aec3bfd626a632c1079581163eaba26a0545
|
| Sha384 | c1b06863110b33838b59c09fdedf7e34e6bc05296fb76dc6f0efab754039b5d90b583adb3f30ee0f7fc09be32c307e24
|
| Sha512 | a27c5caa9254be6ac435e05a65bd905a23515724fa8887ffab1f18a9c60b768ff85e7df97f57d9ef2bef5a31d1dd7bcd50f38a95598d6e561d2acc6d29318ba2
|
| SSDeep | 24576:oQIPpf2KPnHq2Bh+mczjIRHN75FB48GkmR7:PIPpOKPHhh+lwHN1Faym9
|
| TLSH | B715239452A8E706CAE227F05EB1F13207717E6CA931C21E6EED2DDBB991F105E40357
|
File Structure
83c05d4eb01c6e90dcd25d427ceb2a14
[Authenticode]_a32ace3a.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
NimGame.MainMenuForm.resources
NimGame.Properties.Resources.resources
PIA
[NBF]root.Data
qpyV
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | Authenticode present at 0xE1800 size 13832 bytes |
| Info | PDB Path: Advn.pdb |
| Module Name | Advn.exe |
| Full Name | Advn.exe |
| EntryPoint | System.Void NimGame.Program::Main() |
| Scope Name | Advn.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Advn |
| Assembly Version | 201.502.607.709 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 231 |
| Main Method | System.Void NimGame.Program::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void NimGame.MainMenuForm::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
83c05d4eb01c6e90dcd25d427ceb2a14 (937.48 KB)
File Structure
83c05d4eb01c6e90dcd25d427ceb2a14
[Authenticode]_a32ace3a.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
NimGame.MainMenuForm.resources
NimGame.Properties.Resources.resources
PIA
[NBF]root.Data
qpyV
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.