Suspect
efd95a97d828448f4cd0057d058ebeb5
PE Executable | MD5: efd95a97d828448f4cd0057d058ebeb5 | Size: 90.62 KB | application/x-dosexec
PE Executable
MD5: efd95a97d828448f4cd0057d058ebeb5
Size: 90.62 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
Symbol Ofbuscation Score
Low
|
Hash | Hash Value |
|---|---|
| MD5 | efd95a97d828448f4cd0057d058ebeb5
|
| Sha1 | 91179a17fe98163ed02a22e0f8255cc55a7182a4
|
| Sha256 | 0ad8294f5601fb7b3f42c3bf533a7ab3a33ea38eca2fa0708e1a9d0b2737e858
|
| Sha384 | da5254709e287fb5bb21e99d5850d08aa895b19294846530bd76a651d355a3027bc3a57efd210c8063162077e5bc42c1
|
| Sha512 | 8ad0d38a6137fef5a0abca9952ef09780db67392689a876f56f3df037036bbf76a01e82a416c9895af01b49ff082999f0dda0022aec1b54cd30cf500cf828d98
|
| SSDeep | 1536:D+2POHhidY4nfkPVzO5ppOpJG4ZudvrWuMicwuvAsRB/x4259P5/3+Nu69I5yqA:a2POHhidzfkPVzyppOHGFSZtRBJ42jPS
|
| TLSH | 17930929AFEC8606F1BE3B35A8B353504B72F56A3433E70E298455FF1862B815D4077A
|
PeID
.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Informations
|
Name0 | Value |
|---|---|
| Module Name | Cbtfd.exe |
| Full Name | Cbtfd.exe |
| EntryPoint | System.Void Vsdovwm.Pjhxrly::Main() |
| Scope Name | Cbtfd.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Cbtfd |
| Assembly Version | 1.0.6445.20158 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.6 |
| Total Strings | 391 |
| Main Method | System.Void Vsdovwm.Pjhxrly::Main() |
| Main IL Instruction Count | 2 |
| Main IL | call System.Void Vsdovwm.Pjhxrly::Cqtwcd() ret <null> |
| Module Name | Cbtfd.exe |
| Full Name | Cbtfd.exe |
| EntryPoint | System.Void Vsdovwm.Pjhxrly::Main() |
| Scope Name | Cbtfd.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | Cbtfd |
| Assembly Version | 1.0.6445.20158 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | .NETFramework,Version=v4.6 |
| Total Strings | 391 |
| Main Method | System.Void Vsdovwm.Pjhxrly::Main() |
| Main IL Instruction Count | 2 |
| Main IL | call System.Void Vsdovwm.Pjhxrly::Cqtwcd() ret <null> |
efd95a97d828448f4cd0057d058ebeb5 (90.62 KB)
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.