General
Structural Analysis
Config.0
Yara Rules18
Sync
Community
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Very high
|
Hash | Hash Value |
|---|---|
| MD5 | a367e7cb5b5547b008838383e8a26074
|
| Sha1 | 2d7233a05af490369016f5a9f81a43e7fb9c5bf9
|
| Sha256 | 7ec6f0bc3b86237a6051120f5a369d2b9c411e46e797838b1a62a6f885196872
|
| Sha384 | 7baaa2346a68f15f9aaed3703abc4ba1a9fb6b268dfc0074b4ddc7f42c552b039bc3e3fd210062c02baaff8d4a730c08
|
| Sha512 | 4e8a14e1a86e5edbe6209e7e3008725bab14f82b8c1ba8bafa49b4b23b0c69c12bbeb0dfd8d8a5dfce8a8faeae2d7f1b7374e6b05df5f046a596c8abd1f6c95b
|
| SSDeep | 6144:Iw4+vLb1NnSNiKVX+Sl06e8YljIHAsBlHgiz7pifdxrpfd/Htm6s:2+vl0NiKVXzC8SIHAdiQfdj1/NBs
|
| TLSH | 1F642390F71D4158C733E53BE69B74C207BB4AE38CB293A4ACB1534A150D7A79F62A60
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Informations
|
Name0 | Value |
|---|---|
| Module Name | Tatecqddw.exe |
| Full Name | Tatecqddw.exe |
| EntryPoint | System.Void Tatecqddw.Isxpxbf::Main() |
| Scope Name | Tatecqddw.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Tatecqddw |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 4 |
| Main Method | System.Void Tatecqddw.Isxpxbf::Main() |
| Main IL Instruction Count | 2 |
| Main IL | call System.Void Tatecqddw.Isxpxbf::CallTransferableFunction() ret <null> |
| Module Name | Tatecqddw.exe |
| Full Name | Tatecqddw.exe |
| EntryPoint | System.Void Tatecqddw.Isxpxbf::Main() |
| Scope Name | Tatecqddw.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Tatecqddw |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.0 |
| Total Strings | 4 |
| Main Method | System.Void Tatecqddw.Isxpxbf::Main() |
| Main IL Instruction Count | 2 |
| Main IL | call System.Void Tatecqddw.Isxpxbf::CallTransferableFunction() ret <null> |
a367e7cb5b5547b008838383e8a26074 (329.22 KB)
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.