9bdf2e42ed125ae6ce73feba52525a1a

PE Executable
|
MD5: 9bdf2e42ed125ae6ce73feba52525a1a
|
Size: 1.25 MB
|
application/x-dosexec

Infection Chain

Summary by MalvaGPT

Characteristics

Hash	Hash Value
MD5	9bdf2e42ed125ae6ce73feba52525a1a
Sha1	5cceb5f779598a0c57cbb2ef7d4dafb3e5034f5a
Sha256	256963eb74c71e0a17b4857f1d6b4cde19803f5b3f6c7b1074bb67638873a44f
Sha384	4fa47834a61635e32cbb0d65de7f5aef8095f8620e0c0a12121615fd8decb9f8341e21e83f46cf63bd380bb0f4b7044b
Sha512	e64418fd456faa5d42c70b48ffd703d84e205b2c85913dd7832dbd9265447c4628b024343cf2fabc822e9baa58f2d145dbb0d5d19b38493c00d6957833dde6b0
SSDeep	24576:eFSN0lAv6Oj4Ej96VcocdDMOCcjjzhsV1/r5YwR9pM:e8N74tuod1Upe5bRf
TLSH	F6455A027E44CE02F40D1633C6FF456887B4A95566A6E32B7DBA376E59123A33C0D9CB

PeID

.NET executable

Microsoft Visual C# / Basic .NET

Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL

Microsoft Visual C# v7.0 / Basic .NET

Microsoft Visual Studio .NET

File Structure

Informations

Name0	Value
Info	PE Detect: PeReader OK (file layout)
Module Name	AyVKnVMA
Full Name	AyVKnVMA
EntryPoint	System.Void jvTGMPUoRtBlnWUnqiE.pAGA0PU4GSfGS5lKaqH::mvQVJOINnN()
Scope Name	AyVKnVMA
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	62XdTJLb3hNVNAPkfSaOm2qoFb4IA
Assembly Version	7.6.6.3
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.0
Total Strings	63
Main Method	System.Void jvTGMPUoRtBlnWUnqiE.pAGA0PU4GSfGS5lKaqH::mvQVJOINnN()
Main IL Instruction Count	14
Main IL	br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void jnEtekc7tOrWr86jNZm.yENdGrcaE0HDxqxjnN5::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object jvTGMPUoRtBlnWUnqiE.pAGA0PU4GSfGS5lKaqH::l8TV4HMjXI callvirt System.Void sZU807Ua4BAO4VcHJZo.o8IaIVUf5Xo1xjsWJU4::wIJYbm1xqG() nop <null> ret <null>
Module Name	AyVKnVMA
Full Name	AyVKnVMA
EntryPoint	System.Void jvTGMPUoRtBlnWUnqiE.pAGA0PU4GSfGS5lKaqH::mvQVJOINnN()
Scope Name	AyVKnVMA
Scope Type	ModuleDef
Kind	Windows
Runtime Version	v4.0.30319
Tables Header Version	512
WinMD Version	<null>
Assembly Name	62XdTJLb3hNVNAPkfSaOm2qoFb4IA
Assembly Version	7.6.6.3
Assembly Culture	<null>
Has PublicKey	False
PublicKey Token	<null>
Target Framework	.NETFramework,Version=v4.0
Total Strings	63
Main Method	System.Void jvTGMPUoRtBlnWUnqiE.pAGA0PU4GSfGS5lKaqH::mvQVJOINnN()
Main IL Instruction Count	14
Main IL	br.s IL_000B: ldc.i4.0 call <null> ldnull <null> ldc.i4.0 <null> ldelem.ref <null> pop <null> ldc.i4.0 <null> brtrue.s IL_0007: ldnull call System.Void jnEtekc7tOrWr86jNZm.yENdGrcaE0HDxqxjnN5::kLjw4iIsCLsZtxc4lksN0j() nop <null> ldsfld System.Object jvTGMPUoRtBlnWUnqiE.pAGA0PU4GSfGS5lKaqH::l8TV4HMjXI callvirt System.Void sZU807Ua4BAO4VcHJZo.o8IaIVUf5Xo1xjsWJU4::wIJYbm1xqG() nop <null> ret <null>

9bdf2e42ed125ae6ce73feba52525a1a (1.25 MB)

9bdf2e42ed125ae6ce73feba52525a1a

PE Executable | MD5: 9bdf2e42ed125ae6ce73feba52525a1a | Size: 1.25 MB | application/x-dosexec

PE Executable
|
MD5: 9bdf2e42ed125ae6ce73feba52525a1a
|
Size: 1.25 MB
|
application/x-dosexec