General
Structural Analysis
Config.0
Yara Rules99+
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
Symbol Obfuscation Score
Very high
|
Hash | Hash Value |
|---|---|
| MD5 | 8a06579d16bd5498316a4211f06910a9
|
| Sha1 | e4cb99d59dae8f443550f9e2304b68f319e05a4f
|
| Sha256 | 89d8a5c61f78e93fb13f9aaf424161b02cc7f9508f69d8d2209cca2a5c2ed12e
|
| Sha384 | 6b7bbf11c61a7e424da56261cef1733695040293f28fca035c0dd4e3751d8878a27e6b17e68b1713f8f12f55194d1886
|
| Sha512 | 7fa08e6a05cb3107d09c7be6fd80ec245bdb2ed5086a1ed0f4b2778b96cb9842405a2dff8aa46d3cd4e257b4ae03c3059d5ec350129c213c450514afc89bc666
|
| SSDeep | 12288:YlsrE2FX/q2dG+3AKmafYSI1hz94GmLHYYYYYYVS8EP+f0xv6tRSwB:SbGrd/QzayXh4bLHYYYYYYVeyRn
|
| TLSH | FAE4CF18F666DF1FC79A8673C4D60858A3B29447E21BF32BE14312E979473E7CA01297
|
PeID
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
File Structure
8a06579d16bd5498316a4211f06910a9
Malicious
Overlay_83878c91.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
mcAfenZGEuud3eAV6r.XoxdeR3mnLe5CYxCtY.resources
label1.DefaultModifiers
$this.Language
$this.GridSize
mcAfenZGEuud3eAV6r.hCg1Il6OWb5ySAaqbZ.resources
g6j0DgxW6G.resources
g6j0DgxW6G
DriverFix Pro.g.resources
aR3nbf8dQp2feLmk31.lSfgApatkdxsVcGcrktoFd.resources
$this.Icon
[NBF]root.IconData
progressBar1.Modifiers
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | Overlay extracted: Overlay_83878c91.bin (1 bytes) |
| Module Name | DriverFix Pro.dll |
| Full Name | DriverFix Pro.dll |
| Scope Name | DriverFix Pro.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v2.0.50727 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | DriverFix Pro |
| Assembly Version | 2.3.1.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | <null> |
| Total Strings | 8 |
| Main Method | Not found or no body |
| Module Name | DriverFix Pro.dll |
| Full Name | DriverFix Pro.dll |
| Scope Name | DriverFix Pro.dll |
| Scope Type | ModuleDef |
| Kind | Dll |
| Runtime Version | v2.0.50727 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | DriverFix Pro |
| Assembly Version | 2.3.1.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | <null> |
| Total Strings | 8 |
| Main Method | Not found or no body |
8a06579d16bd5498316a4211f06910a9 (665.6 KB)
File Structure
8a06579d16bd5498316a4211f06910a9
Malicious
Overlay_83878c91.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
mcAfenZGEuud3eAV6r.XoxdeR3mnLe5CYxCtY.resources
label1.DefaultModifiers
$this.Language
$this.GridSize
mcAfenZGEuud3eAV6r.hCg1Il6OWb5ySAaqbZ.resources
g6j0DgxW6G.resources
g6j0DgxW6G
DriverFix Pro.g.resources
aR3nbf8dQp2feLmk31.lSfgApatkdxsVcGcrktoFd.resources
$this.Icon
[NBF]root.IconData
progressBar1.Modifiers
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.