General
Structural Analysis
Config.0
Yara Rules0
Sync
Community
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 85e001fb0193a8fe9728e2d8b6b5d6a1
|
| Sha1 | 356481ca82bee8279a86ec358aa5be525bd9690d
|
| Sha256 | fe7ba9fdcc449190123cc2c60ef77c04912c442a3c15ef2b88d26fe41c18c6a8
|
| Sha384 | 77c25032510dc94aa59500ce6183520175c0819b1676040200270c0d1cdd169992a7a2a30500d0d3734ca44fd94d4c03
|
| Sha512 | f85f617b7aceb6e84e181894b0da17ecb437f0a743217b2bff778472a3811ffcf634383496383cbb49a5aff8607ea497cf9adbd194663155601b40311da18776
|
| SSDeep | 49152:eHeu3Xx3Dqp8/ngSwjdVEAU1UBBqVpzZOBVon/FdM7OViNvVxxx+d+S8BQOkHD3b:Lih3mp8/ngSULCqa
|
| TLSH | F706D2956CB8A865CD9E98308DA3423C7633FC1D47A76AD399D1BC6D0476AC4FAF8310
|
PeID
HQR data file
Microsoft Visual C++ v6.0 DLL
tElock 1.0 (private) -> tE!
tElock 1.0 (private) -> tE!
File Structure
[Authenticode]_b877664a.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.idata
.reloc
.symtab
.rsrc
Resources
ZIPRES
ID:0000
ID:2052
bg.svg
bg.svg-preview.jpg
bgshadw.png
bgshadw.png-preview.png
blue_disable.svg
blue_disable.svg-preview.jpg
blue_hover.svg
blue_hover.svg-preview.jpg
blue_normal.svg
blue_normal.svg-preview.jpg
browse_btn_hover.svg
browse_btn_hover.svg-preview.jpg
browse_btn_normal.svg
browse_btn_normal.svg-preview.jpg
check_disable.svg
check_disable.svg-preview.jpg
check_sel.svg
check_sel.svg-preview.jpg
close_hover.svg
close_hover.svg-preview.jpg
edit_bg.svg
edit_bg.svg-preview.jpg
InstallMainWnd.xml
install_drop_down_normal.svg
install_drop_down_normal.svg-preview.jpg
install_drop_down_normal_reverse.svg
install_drop_down_normal_reverse.svg-preview.jpg
install_drop_down_select.svg
install_drop_down_select.svg-preview.jpg
install_drop_down_select_reverse.svg
install_drop_down_select_reverse.svg-preview.jpg
language
arabic.xml
de.xml
en.xml
fr.xml
it.xml
ja.xml
ko.xml
ru.xml
zh-tw.xml
zh_cn.xml
logo.svg
logo.svg-preview.jpg
progressing.png
progressing.png-preview.png
progressing@125.png
progressing@125.png-preview.png
progressing@150.png
progressing@150.png-preview.png
progressing@175.png
progressing@175.png-preview.png
progressing@200.png
progressing@200.png-preview.png
progress_normal.svg
progress_normal.svg-preview.jpg
scrollbar
scrollbar_rail.svg
scrollbar_rail.svg-preview.jpg
scrollbar_rail2.svg
scrollbar_rail2.svg-preview.jpg
scrollbar_rail_hover.svg
scrollbar_rail_hover.svg-preview.jpg
scrollbar_rail_hover2.svg
scrollbar_rail_hover2.svg-preview.jpg
scrollbar_rail_hover_small.svg
scrollbar_rail_hover_small.svg-preview.jpg
scrollbar_rail_small.svg
scrollbar_rail_small.svg-preview.jpg
success_mark.svg
success_mark.svg-preview.jpg
uncheck_normal.svg
uncheck_normal1.svg
uncheck_normal1.svg-preview.jpg
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
ID:0005
ID:0
ID:0006
ID:0
ID:0007
ID:0
ID:0008
ID:0
RT_MENU
ID:006D
ID:2052
RT_DIALOG
ID:0067
ID:2052
RT_STRING
ID:0007
ID:2052
RT_ACCELERATOR
ID:006D
ID:2052
RT_GROUP_CURSOR4
ID:006A
ID:0
RT_VERSION
ID:0001
ID:2052
RT_MANIFEST
ID:0001
ID:1033
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | Authenticode present at 0x3C8000 size 10640 bytes |
85e001fb0193a8fe9728e2d8b6b5d6a1 (3.98 MB)
File Structure
[Authenticode]_b877664a.p7b
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.idata
.reloc
.symtab
.rsrc
Resources
ZIPRES
ID:0000
ID:2052
bg.svg
bg.svg-preview.jpg
bgshadw.png
bgshadw.png-preview.png
blue_disable.svg
blue_disable.svg-preview.jpg
blue_hover.svg
blue_hover.svg-preview.jpg
blue_normal.svg
blue_normal.svg-preview.jpg
browse_btn_hover.svg
browse_btn_hover.svg-preview.jpg
browse_btn_normal.svg
browse_btn_normal.svg-preview.jpg
check_disable.svg
check_disable.svg-preview.jpg
check_sel.svg
check_sel.svg-preview.jpg
close_hover.svg
close_hover.svg-preview.jpg
edit_bg.svg
edit_bg.svg-preview.jpg
InstallMainWnd.xml
install_drop_down_normal.svg
install_drop_down_normal.svg-preview.jpg
install_drop_down_normal_reverse.svg
install_drop_down_normal_reverse.svg-preview.jpg
install_drop_down_select.svg
install_drop_down_select.svg-preview.jpg
install_drop_down_select_reverse.svg
install_drop_down_select_reverse.svg-preview.jpg
language
arabic.xml
de.xml
en.xml
fr.xml
it.xml
ja.xml
ko.xml
ru.xml
zh-tw.xml
zh_cn.xml
logo.svg
logo.svg-preview.jpg
progressing.png
progressing.png-preview.png
progressing@125.png
progressing@125.png-preview.png
progressing@150.png
progressing@150.png-preview.png
progressing@175.png
progressing@175.png-preview.png
progressing@200.png
progressing@200.png-preview.png
progress_normal.svg
progress_normal.svg-preview.jpg
scrollbar
scrollbar_rail.svg
scrollbar_rail.svg-preview.jpg
scrollbar_rail2.svg
scrollbar_rail2.svg-preview.jpg
scrollbar_rail_hover.svg
scrollbar_rail_hover.svg-preview.jpg
scrollbar_rail_hover2.svg
scrollbar_rail_hover2.svg-preview.jpg
scrollbar_rail_hover_small.svg
scrollbar_rail_hover_small.svg-preview.jpg
scrollbar_rail_small.svg
scrollbar_rail_small.svg-preview.jpg
success_mark.svg
success_mark.svg-preview.jpg
uncheck_normal.svg
uncheck_normal1.svg
uncheck_normal1.svg-preview.jpg
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
ID:0005
ID:0
ID:0006
ID:0
ID:0007
ID:0
ID:0008
ID:0
RT_MENU
ID:006D
ID:2052
RT_DIALOG
ID:0067
ID:2052
RT_STRING
ID:0007
ID:2052
RT_ACCELERATOR
ID:006D
ID:2052
RT_GROUP_CURSOR4
ID:006A
ID:0
RT_VERSION
ID:0001
ID:2052
RT_MANIFEST
ID:0001
ID:1033
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.