Suspect
f7778fab08ef250ae652aef0f5333b6c
PE Executable | MD5: f7778fab08ef250ae652aef0f5333b6c | Size: 361.47 KB | application/x-dosexec
PE Executable
MD5: f7778fab08ef250ae652aef0f5333b6c
Size: 361.47 KB
application/x-dosexec
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | f7778fab08ef250ae652aef0f5333b6c
|
| Sha1 | d9187036ddb060d7a300a44ef175e91026a796f7
|
| Sha256 | aa82b9c348f023063c6d83ca7f437f6374fc3d4ab039f253a0a56950a365446e
|
| Sha384 | c7b39ed06e204379359aa8bb06bc3ed00887413718dfd3a8c70098fba78ad592a7731d971b0eed7467f015aa7f88299e
|
| Sha512 | f6f0b727b039b24941895c2b04f35da349e79c9eeee9924cae85d1c353c77bd3a4f2b6fd6aac6a5c7703e168fb895f8f4e223f2856c0dd057e3b64a49fbdb5a4
|
| SSDeep | 6144:uO/djLXieoWqsvemVN2rTluKnRFD5WP8HOgJ/z:rDieXq2pGrTUKnRFD5WPkJ
|
| TLSH | 5074E12A35F0C0B2D44B14344928DBB49E7EB8319A64B2D733941ABE5E303D19F7B766
|
PeID
Microsoft Visual C++ 6.0 DLL (Debug)
Microsoft Visual C++ v6.0 DLL
PeStubOEP v1.x
Safeguard 1.03 -> Simonzh
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.rsrc
.reloc
.rdata
Resources
AFX_DIALOG_LAYOUT
ID:012B
ID:0
ID:018B
ID:0
ID:018E
ID:0
KIVAMU
ID:02E2
ID:1132
XONOYACUTUFADOSOCOMIFIGOZA
ID:0082
ID:1132
RT_ICON
ID:0001
ID:1132
ID:0002
ID:1132
ID:0003
ID:1132
ID:0004
ID:1132
ID:0005
ID:1132
ID:0006
ID:1132
ID:0007
ID:1132
RT_DIALOG
ID:00E6
ID:0
RT_STRING
ID:0011
ID:0
ID:0015
ID:0
RT_ACCELERATOR
ID:0172
ID:1132
RT_GROUP_CURSOR4
ID:0099
ID:1132
RT_VERSION
ID:041A
ID:0
Artefacts
|
Name0 | Value |
|---|---|
| PDB Path | C:\car.pdb |
f7778fab08ef250ae652aef0f5333b6c (361.47 KB)
File Structure
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.rsrc
.reloc
.rdata
Resources
AFX_DIALOG_LAYOUT
ID:012B
ID:0
ID:018B
ID:0
ID:018E
ID:0
KIVAMU
ID:02E2
ID:1132
XONOYACUTUFADOSOCOMIFIGOZA
ID:0082
ID:1132
RT_ICON
ID:0001
ID:1132
ID:0002
ID:1132
ID:0003
ID:1132
ID:0004
ID:1132
ID:0005
ID:1132
ID:0006
ID:1132
ID:0007
ID:1132
RT_DIALOG
ID:00E6
ID:0
RT_STRING
ID:0011
ID:0
ID:0015
ID:0
RT_ACCELERATOR
ID:0172
ID:1132
RT_GROUP_CURSOR4
ID:0099
ID:1132
RT_VERSION
ID:041A
ID:0
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| PDB Path | C:\car.pdb |
f7778fab08ef250ae652aef0f5333b6c |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.