Suspect
c5a278a6eccac5ab0cea95f99463106a
PE Executable | MD5: c5a278a6eccac5ab0cea95f99463106a | Size: 814.59 KB | application/x-dosexec
PE Executable
MD5: c5a278a6eccac5ab0cea95f99463106a
Size: 814.59 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Medium
|
Hash | Hash Value |
|---|---|
| MD5 | c5a278a6eccac5ab0cea95f99463106a
|
| Sha1 | e22541146e07a3e82ad40bb011a9ba31f6328f16
|
| Sha256 | dfff02076554af2576fd4b55b593d4923e19d7a5b0596ca4162c9101bed25691
|
| Sha384 | 372b360a5ec1f2590437fb9ed1871f6220d3f8152c587849033e2c3da66e7d4ec5c64275bdd529fd85cf9aadcc0c99e1
|
| Sha512 | 6e159b038e9acd16e945071fda48e3db01813ad6ef132400a2fb65b7627b23d284913dedc691ab1f8429e1bbe7338cbfb07d9c3a35d9a10a6a68d6d8ed66e52f
|
| SSDeep | 24576:DG1UrX1KgVB4nnj2aKpaT88eqqlQ30JEGDPVNyRb:zx4njyIMqN3TG5ob
|
| TLSH | 0905E02036ABD604D8654BB00C31D3F413B97EA9BA14C70E5EED6E9FFD362135B116A2
|
PeID
Microsoft Visual C++ v6.0 DLL
File Structure
c5a278a6eccac5ab0cea95f99463106a
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0.exif
ID:0-preview.png
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
StokTakip.BrandsManage.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Font
$this.Margin
btnCreateBrand.Location
btnCreateBrand.Size
btnDeleteBrand.Location
btnDeleteBrand.Size
groupBox1.Location
groupBox1.Size
lst_Brands.Dock
lst_Brands.Location
lst_Brands.Size
txtBrandName.Location
txtBrandName.Size
StokTakip.Form1.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Icon
[NBF]root.IconData
$this.Margin
$this.StartPosition
CTT
[NBF]root.Data
dilToolStripMenuItem.Font
dilToolStripMenuItem.Size
englishToolStripMenuItem.Size
markalarToolStripMenuItem.Size
menuStrip1.Size
menuStrip1.TrayLocation
satışToolStripMenuItem.Font
satışToolStripMenuItem.Size
tanımlarToolStripMenuItem.Size
StokTakip.PhoneCaseCreate.resources
$this.ClientSize
btn_AddStock.Location
btn_AddStock.Size
btn_Clear.ImeMode
btn_Clear.Location
btn_Clear.Size
btn_save.Location
btn_save.Size
cb_cases.Location
cb_cases.Size
cb_color.Location
label1.Location
label1.Size
label2.Location
label2.Size
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label7.Location
label7.Size
label7.TextAlign
lbl_info.Font
lbl_info.Location
lbl_info.Size
nm_price.Location
nm_price.Size
nm_qty.Location
nm_qtyAdd.Location
tabControl1.Location
tabControl1.Size
tabPage1.Location
tabPage1.Padding
tabPage1.Size
tb_name.Location
StokTakip.PhoneCaseManage.resources
StokTakip.PhoneCreate.resources
$this.ClientSize
btn_Clear.Location
btn_save.Location
btn_save.Size
cb_brand.Location
label1.Location
label1.Size
label2.Location
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label6.Location
nm_price.Location
tb_IMEI1.Location
tb_IMEI2.Location
tb_modelCode.Location
tb_name.Location
StokTakip.PhonesManage.resources
$this.ClientSize
btn_deletePhone.Location
btn_deletePhone.Size
btn_newPhone.Location
btn_newPhone.Size
filter_btn_search.Location
filter_btn_search.Size
filter_cb_brand.Size
filter_tb_modelcode.Location
filter_tb_modelcode.Size
grid_phones.Location
grid_phones.Size
StokTakip.Properties.Resources.resources
CNEI
[NBF]root.Data
[NBF]root.Data-preview.png
definitions
iconfinder_search_322497
[NBF]root.Data
[NBF]root.Data-preview.png
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Info | PDB Path: C:\Users\Administrator\Desktop\Client\Temp\JjhlLDXTNm\src\obj\Debug\PQNu.pdb |
| Module Name | PQNu.exe |
| Full Name | PQNu.exe |
| EntryPoint | System.Void StokTakip.Program::Main() |
| Scope Name | PQNu.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | PQNu |
| Assembly Version | 3.7.2.4 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.5 |
| Total Strings | 255 |
| Main Method | System.Void StokTakip.Program::Main() |
| Main IL Instruction Count | 12 |
| Main IL | nop <null> call System.Void System.Windows.Forms.Application::EnableVisualStyles() nop <null> ldc.i4.0 <null> call System.Void System.Windows.Forms.Application::SetCompatibleTextRenderingDefault(System.Boolean) nop <null> call System.Void StokTakip.Ayar::GetLatestLanguage() nop <null> newobj System.Void StokTakip.Form1::.ctor() call System.Void System.Windows.Forms.Application::Run(System.Windows.Forms.Form) nop <null> ret <null> |
c5a278a6eccac5ab0cea95f99463106a (814.59 KB)
File Structure
c5a278a6eccac5ab0cea95f99463106a
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0.exif
ID:0-preview.png
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
StokTakip.BrandsManage.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Font
$this.Margin
btnCreateBrand.Location
btnCreateBrand.Size
btnDeleteBrand.Location
btnDeleteBrand.Size
groupBox1.Location
groupBox1.Size
lst_Brands.Dock
lst_Brands.Location
lst_Brands.Size
txtBrandName.Location
txtBrandName.Size
StokTakip.Form1.resources
$this.AutoScaleDimensions
$this.ClientSize
$this.Icon
[NBF]root.IconData
$this.Margin
$this.StartPosition
CTT
[NBF]root.Data
dilToolStripMenuItem.Font
dilToolStripMenuItem.Size
englishToolStripMenuItem.Size
markalarToolStripMenuItem.Size
menuStrip1.Size
menuStrip1.TrayLocation
satışToolStripMenuItem.Font
satışToolStripMenuItem.Size
tanımlarToolStripMenuItem.Size
StokTakip.PhoneCaseCreate.resources
$this.ClientSize
btn_AddStock.Location
btn_AddStock.Size
btn_Clear.ImeMode
btn_Clear.Location
btn_Clear.Size
btn_save.Location
btn_save.Size
cb_cases.Location
cb_cases.Size
cb_color.Location
label1.Location
label1.Size
label2.Location
label2.Size
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label7.Location
label7.Size
label7.TextAlign
lbl_info.Font
lbl_info.Location
lbl_info.Size
nm_price.Location
nm_price.Size
nm_qty.Location
nm_qtyAdd.Location
tabControl1.Location
tabControl1.Size
tabPage1.Location
tabPage1.Padding
tabPage1.Size
tb_name.Location
StokTakip.PhoneCaseManage.resources
StokTakip.PhoneCreate.resources
$this.ClientSize
btn_Clear.Location
btn_save.Location
btn_save.Size
cb_brand.Location
label1.Location
label1.Size
label2.Location
label3.Location
label3.Size
label4.Location
label4.Size
label5.Location
label5.Size
label6.Location
nm_price.Location
tb_IMEI1.Location
tb_IMEI2.Location
tb_modelCode.Location
tb_name.Location
StokTakip.PhonesManage.resources
$this.ClientSize
btn_deletePhone.Location
btn_deletePhone.Size
btn_newPhone.Location
btn_newPhone.Size
filter_btn_search.Location
filter_btn_search.Size
filter_cb_brand.Size
filter_tb_modelcode.Location
filter_tb_modelcode.Size
grid_phones.Location
grid_phones.Size
StokTakip.Properties.Resources.resources
CNEI
[NBF]root.Data
[NBF]root.Data-preview.png
definitions
iconfinder_search_322497
[NBF]root.Data
[NBF]root.Data-preview.png
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.