Malicious
Malicious

f574d919544ee2d976c929299c8c6002

PE Executable
|
MD5: f574d919544ee2d976c929299c8c6002
|
Size: 59.9 KB
|
application/x-dosexec

Print
Infection Chain
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very low

Hash
 Hash Value
MD5
f574d919544ee2d976c929299c8c6002
Sha1
ff64a79ce19e7ec0950672a921520d5ac32002c9
Sha256
e4b666c601d8fa19d65dd8d27518ee93da645153d144d2aedef412c4680d9fc8
Sha384
46e238c2ad5b357f8a45abb69ef43d2af85e5c1ca6d8f7a453c0fbdf126b94b860817f8620477062126d9be92d6400cb
Sha512
641eceb760ce830a56b7e6b831904b8b797eaf7861356e19c1ef67ef6fe082d927e7c27b2dfbf881f3b3d4786123604012d43a1c11a66c173f3deaf0d56b230d
SSDeep
768:YVpuGbNMUCa2vgcKwQD32d2d8bXbg6SmfYOy43H2Gpq7hqwLSN:+LCa2vgd87zfYCq7cwL6
TLSH
2143F802379AC331C56C65B585EB052113F5E7826A33DB9B3E4C629D9F227A39F81BC4

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
f574d919544ee2d976c929299c8c6002
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
RT_MANIFEST
ID:0001
ID:0
.Net Resources
DFGVC.Properties.Resources.resources
BLACKHAWK
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.sdata
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
BtQZBIjpDjnw0ItCVs.QGm7YatuMhJ31F6q3k
BLACKHAWK.g.resources
aR3nbf8dQp2feLmk31.lSfgApatkdxsVcGcrktoFd.resources
$this.Icon
[NBF]root.IconData
progressBar1.Modifiers
$this.Language
$this.GridSize
Informations
Name
 Value
Module Name

DFGVC.exe
Full Name

DFGVC.exe
EntryPoint

System.Void SYSCORE.EntryPoint::Main()
Scope Name

DFGVC.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

DFGVC
Assembly Version

1.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5.1
Total Strings

17
Main Method

System.Void SYSCORE.EntryPoint::Main()
Main IL Instruction Count

11
Main IL

nop <null> nop <null> call System.Void SYSCORE.Engine::Start() nop <null> nop <null> leave.s IL_0010: ret pop <null> nop <null> nop <null> leave.s IL_0010: ret ret <null>
Module Name

DFGVC.exe
Full Name

DFGVC.exe
EntryPoint

System.Void SYSCORE.EntryPoint::Main()
Scope Name

DFGVC.exe
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

DFGVC
Assembly Version

1.0.0.0
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.5.1
Total Strings

17
Main Method

System.Void SYSCORE.EntryPoint::Main()
Main IL Instruction Count

11
Main IL

nop <null> nop <null> call System.Void SYSCORE.Engine::Start() nop <null> nop <null> leave.s IL_0010: ret pop <null> nop <null> nop <null> leave.s IL_0010: ret ret <null>
Artefacts
Name
 Value
PDB Path

DFGVC.pdb
PDB Path

BLACKHAWK.pdb
f574d919544ee2d976c929299c8c6002 (59.9 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙