Suspect
d7757c3e010f26c6aa72a613a9a5071b
PE Executable | MD5: d7757c3e010f26c6aa72a613a9a5071b | Size: 1.48 MB | application/x-dosexec
PE Executable
MD5: d7757c3e010f26c6aa72a613a9a5071b
Size: 1.48 MB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Low
|
Hash | Hash Value |
|---|---|
| MD5 | d7757c3e010f26c6aa72a613a9a5071b
|
| Sha1 | 8c30b440f1c1f7697106ac7db575d3bcba7c9878
|
| Sha256 | 3aece1e84c3a29c503ae917c6b300c5198e7ca982a6f8694d09970d47ccc18b3
|
| Sha384 | 25dac63a46d3c7547bd251b705874ece075d51512c14c31adbf9695a43ed9bca871519f86a33cfe82c198d149a0bf912
|
| Sha512 | 30b2a357e29f3adef370476b67295305e3203f190c17cf1687485a6c703b744cbef2476e98db6fc9cd4da12095daa704a72707fdeed7f1fc2b12ca122cd57da1
|
| SSDeep | 24576:9b2JEVnyz4BBPmwmvH7YSC35pi/prg5kOFDaHWkooWFxjBE:9bXnw4jPmHHESC3Eprg54Hkr1
|
| TLSH | D865D0AA830AA697DBD52D320C6930145D9FF84CE1D39DB371C29B5961CA89C3D0FDA3
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
d7757c3e010f26c6aa72a613a9a5071b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Fzsdiz.Properties.Resources.resources
Vvywna
ZetaLongPaths.Properties.Resources.resources
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | Ibhzsvulf.exe |
| Full Name | Ibhzsvulf.exe |
| EntryPoint | System.Void Fzsdiz.Xseciypqmxp::Main() |
| Scope Name | Ibhzsvulf.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Ibhzsvulf |
| Assembly Version | 1.0.932.27007 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.6 |
| Total Strings | 135 |
| Main Method | System.Void Fzsdiz.Xseciypqmxp::Main() |
| Main IL Instruction Count | 4 |
| Main IL | nop <null> call System.Void Fzsdiz.Xseciypqmxp::Jrvkkyg() nop <null> ret <null> |
| Module Name | Ibhzsvulf.exe |
| Full Name | Ibhzsvulf.exe |
| EntryPoint | System.Void Fzsdiz.Xseciypqmxp::Main() |
| Scope Name | Ibhzsvulf.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Ibhzsvulf |
| Assembly Version | 1.0.932.27007 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.6 |
| Total Strings | 135 |
| Main Method | System.Void Fzsdiz.Xseciypqmxp::Main() |
| Main IL Instruction Count | 4 |
| Main IL | nop <null> call System.Void Fzsdiz.Xseciypqmxp::Jrvkkyg() nop <null> ret <null> |
d7757c3e010f26c6aa72a613a9a5071b (1.48 MB)
File Structure
d7757c3e010f26c6aa72a613a9a5071b
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
Fzsdiz.Properties.Resources.resources
Vvywna
ZetaLongPaths.Properties.Resources.resources
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.