General
Structural Analysis
Config.0
Yara Rules19
Sync
Community
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 91588bbc863d9ffae651a241d48eda30
|
| Sha1 | 1339f2789a5a37eebdfa865759c4b5ae123353d7
|
| Sha256 | 4fc72fdd485b24a9f0aeac8cf073a6f85fdf46faf90636b39d4d0beec65eedaa
|
| Sha384 | a50b6813feaab54ac1407fa9a5f87819369e8d755dc2d68350c665f400ea8607330a92fbc9464730c49989b5d689ca39
|
| Sha512 | 8ab67293fb01426cf49fb98d7c7767a774060bcb05b022397bb274f671cc6694c669fadbc07ed213c4a5f0315e713f5a0d68d1be0b722eda23a4e19d5e05c5e9
|
| SSDeep | 12288:iay/ncqUuAIOXy0RYVDVhO/xpqE9cVEd9pDc0JpHQrQSUCqZDlW+Vc1E4maTI:KPcqVuckpD9cydMAYqZlWX1Ef
|
| TLSH | 84F4232131D5A2EE70232D31C4648D5DE8C55EBC31E4843FE876BFE888A9365B4F23A5
|
File Structure
Signed Purchase Order for Material Shipment - (PO#1274).exe
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0-preview.png
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
ID:0005
ID:0
ID:0006
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
MappingWithWindowsForm.Form1.resources
$this.Icon
[NBF]root.IconData
KR
[NBF]root.Data
openFileDialog1.TrayLocation
MappingWithWindowsForm.Migrations.InitialMigration.resources
MappingWithWindowsForm.Migrations.AddDisplayOrderColumnToMapTable.resources
MappingWithWindowsForm.Migrations.AddImageUrlColumnToMapTable.resources
MappingWithWindowsForm.Properties.Resources.resources
cXmB
[NBF]root.Data
[NBF]root.Data-preview.png
location1
[NBF]root.Data
[NBF]root.Data-preview.png
mapp
[NBF]root.Data
[NBF]root.Data-preview.png
mappp
[NBF]root.Data
[NBF]root.Data-preview.png
Artefacts
|
Name0 | Value |
|---|---|
| PDB Path | ? |
91588bbc863d9ffae651a241d48eda30 (729.97 KB)
File Structure
Signed Purchase Order for Material Shipment - (PO#1274).exe
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0-preview.png
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
ID:0005
ID:0
ID:0006
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
.Net Resources
MappingWithWindowsForm.Form1.resources
$this.Icon
[NBF]root.IconData
KR
[NBF]root.Data
openFileDialog1.TrayLocation
MappingWithWindowsForm.Migrations.InitialMigration.resources
MappingWithWindowsForm.Migrations.AddDisplayOrderColumnToMapTable.resources
MappingWithWindowsForm.Migrations.AddImageUrlColumnToMapTable.resources
MappingWithWindowsForm.Properties.Resources.resources
cXmB
[NBF]root.Data
[NBF]root.Data-preview.png
location1
[NBF]root.Data
[NBF]root.Data-preview.png
mapp
[NBF]root.Data
[NBF]root.Data-preview.png
mappp
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| PDB Path | ? |
91588bbc863d9ffae651a241d48eda30 > Signed Purchase Order for Material Shipment - (PO#1274).exe |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.