General
Structural Analysis
Config.0
Yara Rules99+
Sync
Community
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | b1f128efa592ec00cae6c752e71b71db
|
| Sha1 | afeba84a2143f947b15d2c875374db56d592d298
|
| Sha256 | dc8decaba2fbe09e0ca95485ed06376e65ba7e77869868beecf8f937747a213f
|
| Sha384 | 0da4efc456ca64d9c7b57f2475de35862e081ba713a400a6e20a10fad8d7eb5a98f6d88219637b72abe9add5972a07fa
|
| Sha512 | 9a557ace9a91287382b09b2cbcffaca1d6472a8452d28211a3fc7853657f887a9eb71b729bf6354eae94b9d808d52e8fd09f3b6594b04c9f403b153eff65fd45
|
| SSDeep | 98304:KtdeTTCZKLEp9tUcYIqHp5NHDkcjtp0UpI9BAO6EfVpx3NEVJyZlng4p2VT:Ktdefmpfna5NHDkcjtp0aI4mjEVcn1pe
|
| TLSH | F936F1897650B69EC85BC933CAE51C28F7A1A47B571BC303A46325EC9D4DA9BCF041B3
|
PeID
Borland Delphi 7 - Nstd EP - ASL sign
File Structure
b1f128efa592ec00cae6c752e71b71db
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
CODE
DATA
BSS
.idata
.tls
.rdata
.reloc
.rsrc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
RT_RCDATA
ID:0000
ID:0
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
UPX0
UPX1
UPX2
.text
.rsrc
.reloc
Resources
RT_MANIFEST
ID:0001
ID:0
.Net Resources
{f4f5d655-d3f5-4ecf-9a53-3a2fe4afba9b}
RnsC:
Z0Az>S7ceT;H}HL:0Y$.resources
logoPictureBox.BackgroundImage
[NBF]root.Data
[NBF]root.Data-preview.png
ls
p0l#ez"6 r wkmcf=YU"'%.resources
$this.Icon
[NBF]root.IconData
?18Z
,YcTt5!
+UrJh7sHJBcb9(.resources
{c61cd46d-9d75-437f-8270-5249854f931f}
{5a3e54c3-0556-4780-bd19-e692c4c55323}
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
b1f128efa592ec00cae6c752e71b71db (5.28 MB)
File Structure
b1f128efa592ec00cae6c752e71b71db
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
CODE
DATA
BSS
.idata
.tls
.rdata
.reloc
.rsrc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
RT_RCDATA
ID:0000
ID:0
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
UPX0
UPX1
UPX2
.text
.rsrc
.reloc
Resources
RT_MANIFEST
ID:0001
ID:0
.Net Resources
{f4f5d655-d3f5-4ecf-9a53-3a2fe4afba9b}
RnsC:
Z0Az>S7ceT;H}HL:0Y$.resources
logoPictureBox.BackgroundImage
[NBF]root.Data
[NBF]root.Data-preview.png
ls
p0l#ez"6 r wkmcf=YU"'%.resources
$this.Icon
[NBF]root.IconData
?18Z
,YcTt5!
+UrJh7sHJBcb9(.resources
{c61cd46d-9d75-437f-8270-5249854f931f}
{5a3e54c3-0556-4780-bd19-e692c4c55323}
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.