Suspicious
Suspect

dd18c19ba78a09368c8e0f6863d9e3e5

PE Executable
|
MD5: dd18c19ba78a09368c8e0f6863d9e3e5
|
Size: 98.82 KB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Obfuscation Score

Low

Hash
 Hash Value
MD5
dd18c19ba78a09368c8e0f6863d9e3e5
Sha1
9b6dbe8936657a4522d70e091f88d498c470527b
Sha256
5cb1497aacdec1dbbd53abebb014e6067da1478de8489d9c46646d881c7d1fd3
Sha384
5ed6b81f495db791beb4ad641416374ee80ff9a5d6cc1bfee5d7daaf9f66f67685f8896429792d98399c54b49635628a
Sha512
bce287c166a396f5c46e6b8fda0b7639611c0673a9e5cfdcdf3cf468a4e539e487f16759cff4421f4b9de2a3b05b7119bc20f1362e7e51df336dffb95e889bbd
SSDeep
768:duASrvUH0ByfQHklj2D1Gk/ba2yx9j2v/tVrIQbLYckwu:duZvFBpkp+1nba0nfrBb0wu
TLSH
E2A3F7CDE2F0B02ED66E0DB0856349E8BB267D55983D520A2D77F57C1B7E7803827A84
File Structure
dd18c19ba78a09368c8e0f6863d9e3e5
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

PDB Path: C:\Users\David\source\repos\nitroxide\obj\Debug\nitroxide.pdb
Module Name

nitroxide.exe
Full Name

nitroxide.exe
EntryPoint

System.Void nitroxide.Program::Main()
Scope Name

nitroxide.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

nitroxide
Assembly Version

1.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.0
Total Strings

55
Main Method

System.Void nitroxide.Program::Main()
Main IL Instruction Count

251
Main IL

nop <null> ldstr Hey there. What you're about to run is Nitroxide. This malware made by CiberBoy can cause serious damage to your PC. This malware will also play GDI effects that may be dangerous for epileptics. Also, thanks to MalwareLab for making the MBR. Still wanna run Nitroxide, resulting in an unbootable machine? ldstr You're about to unleash the power of Nitroxide ldc.i4.4 <null> ldc.i4.s 48 call System.Windows.Forms.DialogResult System.Windows.Forms.MessageBox::Show(System.String,System.String,System.Windows.Forms.MessageBoxButtons,System.Windows.Forms.MessageBoxIcon) ldc.i4.6 <null> ceq <null> stloc.0 <null> ldloc.0 <null> brfalse IL_030B: nop nop <null> call System.Boolean nitroxide.Program::os() ldc.i4.0 <null> ceq <null> stloc.1 <null> ldloc.1 <null> brfalse IL_00B9: nop nop <null> call System.Void nitroxide.Program::mbroverwriter() nop <null> call System.Void nitroxide.Program::reg_kill() nop <null> ldnull <null> ldftn System.Void nitroxide.Program::ushowfrm() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.2 <null> ldnull <null> ldftn System.Void nitroxide.Program::errsnd() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.3 <null> ldnull <null> ldftn System.Void nitroxide.Program::colorINV() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_4 ldnull <null> ldftn System.Void nitroxide.Program::shakefast() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_5 ldloc.3 <null> callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.2 <null> callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_4 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_5 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 10000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> call System.Void nitroxide.Program::bsodOS() nop <null> nop <null> br IL_0308: nop nop <null> call System.Void nitroxide.Program::mbroverwriter() nop <null> call System.Void nitroxide.Program::crypter() nop <null> call System.Void nitroxide.Program::reg_kill() nop <null> ldnull <null> ldftn System.Void nitroxide.Program::bytebeat() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_6 ldnull <null> ldftn System.Void nitroxide.Program::xor_fractals() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_7 ldnull <null> ldftn System.Void nitroxide.Program::erroricon() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_8 ldnull <null> ldftn System.Void nitroxide.Program::shake() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_9 ldnull <null> ldftn System.Void nitroxide.Program::zoom() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_10 ldnull <null> ldftn System.Void nitroxide.Program::urfucked() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_11 ldnull <null> ldftn System.Void nitroxide.Program::colorINV() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_12 ldnull <null> ldftn System.Void nitroxide.Program::trip() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_13 ldnull <null> ldftn System.Void nitroxide.Program::spacetrip() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_14 ldnull <null> ldftn System.Void nitroxide.Program::blackwhite() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_15 ldnull <null> ldftn System.Void nitroxide.Program::colorline() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_16 ldnull <null> ldftn System.Void nitroxide.Program::text() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_17 ldnull <null> ldftn System.Void nitroxide.Program::colorflash() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_18 ldnull <null> ldftn System.Void nitroxide.Program::slowicon() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_19 ldnull <null> ldftn System.Void nitroxide.Program::shakefast() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.s V_20 ldloc.s V_6 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_7 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 15000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldloc.s V_7 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_16 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 10000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldloc.s V_16 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_13 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 15000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldloc.s V_13 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_14 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 20000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldloc.s V_14 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_15 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 15000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldloc.s V_15 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_10 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_8 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_9 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 20000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldloc.s V_8 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_11 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_17 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 10000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> ldloc.s V_10 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_9 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_11 callvirt System.Void System.Threading.Thread::Abort() nop <null> ldloc.s V_20 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_12 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_18 callvirt System.Void System.Threading.Thread::Start() nop <null> ldloc.s V_19 callvirt System.Void System.Threading.Thread::Start() nop <null> ldc.i4 15000 call System.Void System.Threading.Thread::Sleep(System.Int32) nop <null> call System.Void nitroxide.Program::bsodOS() nop <null> nop <null> nop <null> br.s IL_0318: ret nop <null> call System.Diagnostics.Process System.Diagnostics.Process::GetCurrentProcess() callvirt System.Void System.Diagnostics.Process::Kill() nop <null> nop <null> ret <null>
dd18c19ba78a09368c8e0f6863d9e3e5 (98.82 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙