Suspicious
Suspect

ec233149cb3acdeeb8ae5af10397a173

AutoIt Compiled Script
|
MD5: ec233149cb3acdeeb8ae5af10397a173
|
Size: 1.13 MB
|
application/x-dosexec

Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
ec233149cb3acdeeb8ae5af10397a173
Sha1
16a350bf104fa4ae684a62c1f14e0201da08e869
Sha256
a23fccf55b1723554101f8fb4e1edb642fc10b751da75aff77998bff533f4c68
Sha384
7ab76664ae323876758dd8579c038cf38e7151247d55d93d9b9a3bf8b66e251821db7e0e9c1196f18e451d35e535dfcb
Sha512
79a278d29ed6204279b3cea3e231f7805bbd196c884082d7bf9fef802baf8648a8e2c6bef6f61b13cbee8324ced588abeb09257723357b9730b504d30fa411d1
SSDeep
24576:izZWywISvY1nVBeTffSWWvb4O8C3Jx5oxDTpfaxNQOeTfiXmujZNocNMQQn+n+:iBaMnVBeSvb4oZx5YfWNLeTfiXmwDdAR
TLSH
5C3533B825B3C04BDB86133AACB541D5FDE55F0925E3321B63140D397A1AE869B3F1B2

PeID

Microsoft Visual C++ v6.0 DLL
Nullsoft PiMP Stub -> SFX
File Structure
ec233149cb3acdeeb8ae5af10397a173
Passed.ppt
Invited.ppt
Ultimate.ppt
Tex.ppt
Students.ppt
Doors.ppt
Chemistry.ppt
Plasma.ppt
nsExec.dll
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.reloc
[SETUP_DECOMPILED.NSI]
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.ndata
.rsrc
Resources
RT_ICON
ID:0001
ID:1033
ID:1033-preview.png
ID:0002
ID:1033
ID:1033-preview.png
ID:0003
ID:1033
RT_DIALOG
ID:0069
ID:1033
ID:006A
ID:1033
ID:006F
ID:1033
RT_GROUP_CURSOR4
ID:0067
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
ec233149cb3acdeeb8ae5af10397a173 (1.13 MB)
File Structure
ec233149cb3acdeeb8ae5af10397a173
Passed.ppt
Invited.ppt
Ultimate.ppt
Tex.ppt
Students.ppt
Doors.ppt
Chemistry.ppt
Plasma.ppt
nsExec.dll
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.reloc
[SETUP_DECOMPILED.NSI]
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.ndata
.rsrc
Resources
RT_ICON
ID:0001
ID:1033
ID:1033-preview.png
ID:0002
ID:1033
ID:1033-preview.png
ID:0003
ID:1033
RT_DIALOG
ID:0069
ID:1033
ID:006A
ID:1033
ID:006F
ID:1033
RT_GROUP_CURSOR4
ID:0067
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙