Suspect
bbe50f050c7fb4a833ef8ec48b59e5cd
PE Executable | MD5: bbe50f050c7fb4a833ef8ec48b59e5cd | Size: 827.1 KB | application/x-dosexec
PE Executable
MD5: bbe50f050c7fb4a833ef8ec48b59e5cd
Size: 827.1 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Obfuscation Score
Very low
|
Hash | Hash Value |
|---|---|
| MD5 | bbe50f050c7fb4a833ef8ec48b59e5cd
|
| Sha1 | d7cf3cf327a25b2cd507106cfda1b0ee587905a5
|
| Sha256 | 9cd82a50053ee9555d2b2dd68acd0a52d998bf6299cdd46554ee1a57770cf6fe
|
| Sha384 | dc6b6905cb6c7d31ea73432a7e283c224a25015248f72ea05977d1f5c4069097af3f9a9d04ec04bb6bd590edbc018c68
|
| Sha512 | 2712f732d5105dd23aa71b8684ab24a0a40f3e40efa6f424e7b65e042f335b98d7e04926527e3e5ac12565389798dde354639a400804d53fcb0c9093ee76b04e
|
| SSDeep | 12288:Z+Xkj/J4t5zLFv3y1Q1eAfhddeD+u+IY1FW423I73kkeAwaZl3brY:HR4jtvKj423w3y
|
| TLSH | 07058E582798AA6AD4EE0779D0205C5883F5EC26AA97D74B34BCB0FE2FB33514D01367
|
File Structure
bbe50f050c7fb4a833ef8ec48b59e5cd
[Authenticode]_5a82b633.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
DriverHubInstaller.g.resources
Installer.Properties.Resources.resources
Installer.Texts.en.txt
Installer.Texts.ru.txt
Installer.Texts.be.txt
Installer.Texts.cs.txt
Installer.Texts.da.txt
Installer.Texts.de.txt
Installer.Texts.es.txt
Installer.Texts.fi.txt
Installer.Texts.fr.txt
Installer.Texts.hu.txt
Installer.Texts.it.txt
Installer.Texts.ja.txt
Installer.Texts.kk.txt
Installer.Texts.ko.txt
Installer.Texts.nb.txt
Installer.Texts.nl.txt
Installer.Texts.pl.txt
Installer.Texts.pt.txt
Installer.Texts.sk.txt
Installer.Texts.sv.txt
Installer.Texts.tr.txt
Installer.Texts.uk.txt
Installer.Texts.zh.txt
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | Authenticode present at 0xC7400 size 10976 bytes |
| Module Name | DriverHubInstaller.exe |
| Full Name | DriverHubInstaller.exe |
| EntryPoint | System.Void Installer.App::Main() |
| Scope Name | DriverHubInstaller.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | DriverHubInstaller |
| Assembly Version | 4.5.3.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.7.2 |
| Total Strings | 1440 |
| Main Method | System.Void Installer.App::Main() |
| Main IL Instruction Count | 6 |
| Main IL | newobj System.Void Installer.App::.ctor() dup <null> callvirt System.Void Installer.App::InitializeComponent() callvirt System.Int32 System.Windows.Application::Run() pop <null> ret <null> |
bbe50f050c7fb4a833ef8ec48b59e5cd (827.1 KB)
File Structure
bbe50f050c7fb4a833ef8ec48b59e5cd
[Authenticode]_5a82b633.p7b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
DriverHubInstaller.g.resources
Installer.Properties.Resources.resources
Installer.Texts.en.txt
Installer.Texts.ru.txt
Installer.Texts.be.txt
Installer.Texts.cs.txt
Installer.Texts.da.txt
Installer.Texts.de.txt
Installer.Texts.es.txt
Installer.Texts.fi.txt
Installer.Texts.fr.txt
Installer.Texts.hu.txt
Installer.Texts.it.txt
Installer.Texts.ja.txt
Installer.Texts.kk.txt
Installer.Texts.ko.txt
Installer.Texts.nb.txt
Installer.Texts.nl.txt
Installer.Texts.pl.txt
Installer.Texts.pt.txt
Installer.Texts.sk.txt
Installer.Texts.sv.txt
Installer.Texts.tr.txt
Installer.Texts.uk.txt
Installer.Texts.zh.txt
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.