Suspicious
Suspect

ddd99d92230f8d8ec088c299d2a39864

PE Executable
|
MD5: ddd99d92230f8d8ec088c299d2a39864
|
Size: 5.73 MB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
ddd99d92230f8d8ec088c299d2a39864
Sha1
41ad64947d50fb2850b314e12b7455150de05061
Sha256
0142cd8e84e72d77169491c2148bcdfc08a61b825d2f94febe0cd8a125a80066
Sha384
d68ccba65699367fdc525d2aa6e8361a9d0d5a65816269c72465cba208e0324a75b83c8d8bfad7fbaf3e9af7616d2671
Sha512
77ddb7f4ed7d816b222d9f953a8ba1a13b99d10c5edcca77c98a6884e28925d2312f08e6715f89b845abf3c779261c4569e876a9820f519289424658de200f19
SSDeep
49152:z3t3loxASc/u9tbypKf/5zGY9THOMGKWQxSgAc+6iK2GF7R2MEBhcscdWpbt/K30:zd3loxAGNxDWUBEVqitAuyixB
TLSH
1F469EC7738AB8C6E4295E761C9FDBEE3A96964A40C1608D768C29239DCF4D43D0973C

PeID

Armadillo v4.x
Microsoft Visual C++ v6.0 DLL
File Structure
ddd99d92230f8d8ec088c299d2a39864
Structure
DosHeader
PE Header
Optional Header (x64)
Section Headers
.text
.rdata
.data
.pdata
.CRT
.rsrc
.reloc
Resources
B7
ID:0000
ID:1033
RT_ICON
ID:0001
ID:1033
ID:1033-preview.png
ID:0002
ID:1033
ID:0003
ID:1033
ID:0004
ID:1033
ID:0005
ID:1033
ID:0006
ID:1033
ID:0007
ID:1033
ID:0008
ID:1033
ID:0009
ID:1033
RT_MENU
ID:0000
ID:49152
RT_STRING
ID:007E
ID:49152
ID:007F
ID:49152
ID:0080
ID:49152
ID:0081
ID:49152
ID:0082
ID:49152
ID:0083
ID:49152
ID:0084
ID:49152
ID:0085
ID:49152
ID:0086
ID:49152
ID:0087
ID:49152
ID:0088
ID:49152
ID:0089
ID:49152
ID:008A
ID:49152
RT_GROUP_CURSOR4
ID:0064
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

PDB Path: t$di
ddd99d92230f8d8ec088c299d2a39864 (5.73 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙