Suspect
a17a8e6fa0a411a81ff79a261ef33225
PE Executable | MD5: a17a8e6fa0a411a81ff79a261ef33225 | Size: 723.97 KB | application/x-dosexec
PE Executable
MD5: a17a8e6fa0a411a81ff79a261ef33225
Size: 723.97 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Low
|
Hash | Hash Value |
|---|---|
| MD5 | a17a8e6fa0a411a81ff79a261ef33225
|
| Sha1 | 3cf5bf8ef8a290b29f08d6f65640871c12dd7a9c
|
| Sha256 | 1a1e4f5e5b668ea14d3cfc4f3e65d8638cefe7acc82378245d6b28db9a070d31
|
| Sha384 | a25b60edfb1e0384ee6a1e95bceadf538fe035f9e3b718c1eb070cfc4709aeca23a29a07ae39a21a4e0a2a9fdf0bfe8b
|
| Sha512 | 382744b8761b620afd34e7e0f3c44fd65d3cac01986eee6ab00cbcbb2a836f77583d100d49bbc90748581c508af51921a95ceea1a2961f56ddc39238ee20e3fc
|
| SSDeep | 12288:F0OWxVmPFvWMhWspfRCADgi6gxybuDufpJHiAmaDJCBKWu5O+LWt/p+SM:K0fh9fR5o5IAJCAblCBKWJ+aRC
|
| TLSH | 36F41285339BC912E5D913F46C71D3B962AD2F9AE811D3439EEDBCDB39263403884792
|
File Structure
a17a8e6fa0a411a81ff79a261ef33225
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
ColorSchemeGenerator.ExportForm.resources
ColorSchemeGenerator.Properties.Resources.resources
KS
[NBF]root.Data
ONhx
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: lbTi.pdb |
| Module Name | lbTi.exe |
| Full Name | lbTi.exe |
| EntryPoint | System.Void ColorSchemeGenerator.Program::Main() |
| Scope Name | lbTi.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | lbTi |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 168 |
| Main Method | System.Void ColorSchemeGenerator.Program::Main() |
| Main IL Instruction Count | 10 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> newobj System.Void ColorSchemeGenerator.MainForm::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
a17a8e6fa0a411a81ff79a261ef33225 (723.97 KB)
File Structure
a17a8e6fa0a411a81ff79a261ef33225
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
ColorSchemeGenerator.ExportForm.resources
ColorSchemeGenerator.Properties.Resources.resources
KS
[NBF]root.Data
ONhx
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.