Suspect
e154349627bddb2d234e5af0c3f34132
PE Executable | MD5: e154349627bddb2d234e5af0c3f34132 | Size: 4.07 MB | application/x-dosexec
PE Executable
MD5: e154349627bddb2d234e5af0c3f34132
Size: 4.07 MB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Very high
|
Hash | Hash Value |
|---|---|
| MD5 | e154349627bddb2d234e5af0c3f34132
|
| Sha1 | a54b7e3e1626d201ec5cee0474ff029d00e766de
|
| Sha256 | 8aeaeaa9bf27b99f933d7479f77d6b91249cdca0e6967eb22456844c0dbb2098
|
| Sha384 | faf718a26b34ce93796247b0803e70d2858cfc99ce979f18111cc6b64712e5f33d940d2dec6badd483136b88d88dd114
|
| Sha512 | 6ee1784fcf954bb9294b6cc7ac7118e5e8f1e01572d3b1e327fbc7a6948f4023964b80dd790684495255db45aa7c86a5b98bc86a57d82d8784e8f44a1aa57ccc
|
| SSDeep | 98304:jGFGXDeX9tXILQxbGR0eqH455RQSEWeH/oSciDn:+keNtYLQxiaeqHONEWefoSp
|
| TLSH | E11623CC728066AEC853CC705A241C34E6552EAA7F1AB643993778A7B73F4C78E114F6
|
PeID
UPolyX 0.3 -> delikon
File Structure
e154349627bddb2d234e5af0c3f34132
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
^
+@iT
c
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | server1.exe |
| Full Name | server1.exe |
| EntryPoint | System.Void ::() |
| Scope Name | server1.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | server1 |
| Assembly Version | 8.2.9.9 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.8 |
| Total Strings | 3 |
| Main Method | System.Void ::() |
| Main IL Instruction Count | 0 |
| Main IL | |
e154349627bddb2d234e5af0c3f34132 (4.07 MB)
File Structure
e154349627bddb2d234e5af0c3f34132
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
^
+@iT
c
.text
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:0
ID:0002
ID:0
ID:0003
ID:0
ID:0004
ID:0
RT_GROUP_CURSOR4
ID:7F00
ID:0
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.