Suspicious
Suspect

9991871b82d9319afb3e92a58a9a2937

PE Executable
|
MD5: 9991871b82d9319afb3e92a58a9a2937
|
Size: 875.01 KB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Medium

Hash
 Hash Value
MD5
9991871b82d9319afb3e92a58a9a2937
Sha1
6260d7755f2406f751216b616bdc1e4bbab2719a
Sha256
ca9fe037cd08ae1d0e2129f290f7cd6062cecec907f87dd74a59226b77219e2d
Sha384
e3e09184a9d831993251dc7a6abf3854fa8b586465c60548bd0c5ae11d5c4b85146af64cc50d90b78b26e2d733634e16
Sha512
bd220e437846b1273d7a9aa5355fa2fcb5e2ab7e42e02564dc0b6d419c45d989384d9b31b0bc7bf2fa48739b39a082fd1462cfd6b74a488a9673de02a5555e41
SSDeep
12288:/wIP8QyZn3f7XT8JS9DRSCz9Ign/eaeKhiVgOWJJg:YIP8x7TJcChIgn/eaeh
TLSH
11156C4E6B46898AFC94D7B8CE73978026A0D9B71CA10307E7D9652AD43F7B91F80713

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
9991871b82d9319afb3e92a58a9a2937
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
jGxj
          ​ 
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

acr-GETWELL-1yt4oovg.2s0_.exe
Full Name

acr-GETWELL-1yt4oovg.2s0_.exe
EntryPoint

System.Void  ::()
Scope Name

acr-GETWELL-1yt4oovg.2s0_.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

acr-GETWELL-1yt4oovg.2s0_
Assembly Version

1.0.7384.14229
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

0
Main Method

System.Void  ::()
Main IL Instruction Count

3
Main IL

newobj System.Void  ::.ctor() pop <null> ret <null>
Module Name

acr-GETWELL-1yt4oovg.2s0_.exe
Full Name

acr-GETWELL-1yt4oovg.2s0_.exe
EntryPoint

System.Void  ::()
Scope Name

acr-GETWELL-1yt4oovg.2s0_.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

acr-GETWELL-1yt4oovg.2s0_
Assembly Version

1.0.7384.14229
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

0
Main Method

System.Void  ::()
Main IL Instruction Count

3
Main IL

newobj System.Void  ::.ctor() pop <null> ret <null>
9991871b82d9319afb3e92a58a9a2937 (875.01 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙