Suspicious
Suspect

9577900a98c0b2c42e0b7a29d6ae8e10

PE Executable
|
MD5: 9577900a98c0b2c42e0b7a29d6ae8e10
|
Size: 377.34 KB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
9577900a98c0b2c42e0b7a29d6ae8e10
Sha1
986944f848a8199f15a4d8c8e10a870a6898c3ec
Sha256
3bef29eeaa055abff9e73adafedfcfc5ceaf3ecc80eb55bec44984017322fa8d
Sha384
a0b84d8f80c0a176cf71278afb2e9e8e8502a15e96c9eeb1ac863272772934da975abffa774ce70887c4fd1c4a01cbe8
Sha512
d88ae4b19d2de1a427c1082c1618e04e27e34a487a3373ad28e121ce933787bf67344c38dbc2fb6640b1d51c0055d290815f226daf052e018a842c814e0b4754
SSDeep
6144:Z64pJBtpJHOxH0z1RcaAVgyNIGC4MBj974ZuLRm7W+FY/h0LvuEOi:NpDtXHOxUz1Rc5g8zjORkIRzWY/uzG
TLSH
6A84233769AD4D61D3D197FAE0A7ACC813F016B4A1A60F383127B3186153378F996637

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
9577900a98c0b2c42e0b7a29d6ae8e10
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Zjjbzoobm.Properties.Resources.resources
Louzc
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

Zjjbzoobm.exe
Full Name

Zjjbzoobm.exe
EntryPoint

System.Void Zjjbzoobm.Bxndm::Main()
Scope Name

Zjjbzoobm.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Zjjbzoobm
Assembly Version

1.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

6
Main Method

System.Void Zjjbzoobm.Bxndm::Main()
Main IL Instruction Count

7
Main IL

br IL_000C: call System.Boolean fr3aJN33N5W6RO4ro0.RiILniA0W9Hrk0B5Xk::FhIVNrWPX() newobj System.Void System.Exception::.ctor() throw <null> ret <null> call System.Boolean fr3aJN33N5W6RO4ro0.RiILniA0W9Hrk0B5Xk::FhIVNrWPX() brtrue IL_000B: ret br IL_0005: newobj System.Void System.Exception::.ctor()
Module Name

Zjjbzoobm.exe
Full Name

Zjjbzoobm.exe
EntryPoint

System.Void Zjjbzoobm.Bxndm::Main()
Scope Name

Zjjbzoobm.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Zjjbzoobm
Assembly Version

1.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

6
Main Method

System.Void Zjjbzoobm.Bxndm::Main()
Main IL Instruction Count

7
Main IL

br IL_000C: call System.Boolean fr3aJN33N5W6RO4ro0.RiILniA0W9Hrk0B5Xk::FhIVNrWPX() newobj System.Void System.Exception::.ctor() throw <null> ret <null> call System.Boolean fr3aJN33N5W6RO4ro0.RiILniA0W9Hrk0B5Xk::FhIVNrWPX() brtrue IL_000B: ret br IL_0005: newobj System.Void System.Exception::.ctor()
9577900a98c0b2c42e0b7a29d6ae8e10 (377.34 KB)
File Structure
9577900a98c0b2c42e0b7a29d6ae8e10
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Zjjbzoobm.Properties.Resources.resources
Louzc
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙