Suspicious
Suspect

fad4021a893533e4b98989853c0006f0

PE Executable
|
MD5: fad4021a893533e4b98989853c0006f0
|
Size: 640 KB
|
application/x-dosexec

Print
Summary by MalvaGPT
Characteristics

Symbol Ofbuscation Score

Very high

Hash
 Hash Value
MD5
fad4021a893533e4b98989853c0006f0
Sha1
1461b38d2cdf0aef0850671077e7c7fc165c0d1e
Sha256
d88fe34d1717339c4c27377b31b7a313867daefa50d05e54f0e35efb4a371062
Sha384
8ae5e4333cf9f97366dfbcece9b21efe1e425fbdbd4936e81808dbeaff6ca9ee03e4ade54632a1744e2724ebdb1e10ca
Sha512
fe36d92b260ae9c239c85171263262f357b5970511b084e88a3539da3de73bec514a3e63cc592a7400adef384fbf3b2f8037ff6e8b2aac726217ee38d090bf47
SSDeep
12288:KeeZoL367f+BPfPG/1RR4dC41wz+0fSXE24FM:KvZoLKDePKFv41+w
TLSH
A0D44AF13AD8122DE5BFB7384DB10A2C4BFBEC5BC631D65E284330A95C25F499815B86

PeID

.NET executable
Microsoft Visual C# / Basic .NET
Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 - ASL
Microsoft Visual C# v7.0 / Basic .NET
Microsoft Visual Studio .NET
File Structure
fad4021a893533e4b98989853c0006f0
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:0
.Net Resources
Xe2dzAc0.Resources.resources
b5de2af0780a16.Resources.resources
bc1ca3450
[NBF]root.Data
bc1ca3451
[NBF]root.Data
bc1ca3452
[NBF]root.Data
bc1ca3453
[NBF]root.Data
bc1ca3454
[NBF]root.Data
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Module Name

Xe2dzAc0
Full Name

Xe2dzAc0
EntryPoint

System.Void Xe2dzAc0.1JsybqZ3zM7fp8::6ffXoxZ13()
Scope Name

Xe2dzAc0
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Xe2dzAc0
Assembly Version

24.7.7.155
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

1600
Main Method

System.Void Xe2dzAc0.1JsybqZ3zM7fp8::6ffXoxZ13()
Main IL Instruction Count

131
Main IL

nop <null> newobj System.Void System.Random::.ctor() stloc.0 <null> newobj System.Void System.Windows.Forms.Form::.ctor() stloc.2 <null> nop <null> ldloc.0 <null> ldc.i4.s -10 ldc.i4.s 10 callvirt System.Int32 System.Random::Next(System.Int32,System.Int32) stloc.3 <null> ldloc.3 <null> ldc.i4.0 <null> cgt <null> stloc.s V_4 ldloc.s V_4 brfalse.s IL_0050: nop ldstr System.AppDomain call System.Type System.Type::GetType(System.String) stloc.s V_5 ldloc.s V_5 ldstr CurrentDomain ldc.i4.s 24 callvirt System.Reflection.PropertyInfo System.Type::GetProperty(System.String,System.Reflection.BindingFlags) stloc.s V_6 ldloc.s V_6 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.PropertyInfo::GetValue(System.Object,System.Object[]) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> br.s IL_006E: nop nop <null> ldstr System.Object call System.Type System.Type::GetType(System.String) stloc.s V_7 ldloc.s V_7 call System.Object System.Activator::CreateInstance(System.Type) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> nop <null> nop <null> br.s IL_000D: nop nop <null> ldloc.1 <null> ldnull <null> ldstr Load ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> call System.Byte[] Xe2dzAc0.Rrw27T_aDfi1d::Zj8nt6Dbn() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Ckjy6mEF_i4 brfalse.s IL_009B: ldsfld Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Fqkx ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Ckjy6mEF_i4 br.s IL_00B1: call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) ldsfld Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Fqkx ldftn System.Byte Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::gs4A3yQz(System.Byte,System.Int32) newobj System.Void System.Func`3<System.Byte,System.Int32,System.Byte>::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Func`3<System.Byte,System.Int32,System.Byte> Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Ckjy6mEF_i4 call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetTypes ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> ldc.i4.s 24 box System.Int32 stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetMethods ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) castclass System.Collections.IEnumerable callvirt System.Collections.IEnumerator System.Collections.IEnumerable::GetEnumerator() stloc.s V_8 br.s IL_013B: ldloc.s V_8 ldloc.s V_8 callvirt System.Object System.Collections.IEnumerator::get_Current() call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.s V_9 nop <null> ldloc.s V_9 castclass System.Reflection.MethodInfo ldnull <null> ldc.i4.0 <null> newarr System.Object callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_0139: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_10 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0139: nop nop <null> nop <null> ldloc.s V_8 callvirt System.Boolean System.Collections.IEnumerator::MoveNext() stloc.s V_11 ldloc.s V_11 brtrue.s IL_0104: ldloc.s V_8 leave.s IL_0161: ret ldloc.s V_8 isinst System.IDisposable brfalse.s IL_0160: endfinally ldloc.s V_8 isinst System.IDisposable callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> ret <null>
Module Name

Xe2dzAc0
Full Name

Xe2dzAc0
EntryPoint

System.Void Xe2dzAc0.1JsybqZ3zM7fp8::6ffXoxZ13()
Scope Name

Xe2dzAc0
Scope Type

ModuleDef
Kind

Windows
Runtime Version

v4.0.30319
Tables Header Version

512
WinMD Version

<null>
Assembly Name

Xe2dzAc0
Assembly Version

24.7.7.155
Assembly Culture

<null>
Has PublicKey

False
PublicKey Token

<null>
Target Framework

.NETFramework,Version=v4.6
Total Strings

1600
Main Method

System.Void Xe2dzAc0.1JsybqZ3zM7fp8::6ffXoxZ13()
Main IL Instruction Count

131
Main IL

nop <null> newobj System.Void System.Random::.ctor() stloc.0 <null> newobj System.Void System.Windows.Forms.Form::.ctor() stloc.2 <null> nop <null> ldloc.0 <null> ldc.i4.s -10 ldc.i4.s 10 callvirt System.Int32 System.Random::Next(System.Int32,System.Int32) stloc.3 <null> ldloc.3 <null> ldc.i4.0 <null> cgt <null> stloc.s V_4 ldloc.s V_4 brfalse.s IL_0050: nop ldstr System.AppDomain call System.Type System.Type::GetType(System.String) stloc.s V_5 ldloc.s V_5 ldstr CurrentDomain ldc.i4.s 24 callvirt System.Reflection.PropertyInfo System.Type::GetProperty(System.String,System.Reflection.BindingFlags) stloc.s V_6 ldloc.s V_6 ldnull <null> ldnull <null> callvirt System.Object System.Reflection.PropertyInfo::GetValue(System.Object,System.Object[]) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> br.s IL_006E: nop nop <null> ldstr System.Object call System.Type System.Type::GetType(System.String) stloc.s V_7 ldloc.s V_7 call System.Object System.Activator::CreateInstance(System.Type) call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.1 <null> nop <null> nop <null> br.s IL_000D: nop nop <null> ldloc.1 <null> ldnull <null> ldstr Load ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> call System.Byte[] Xe2dzAc0.Rrw27T_aDfi1d::Zj8nt6Dbn() call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Reverse<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Ckjy6mEF_i4 brfalse.s IL_009B: ldsfld Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Fqkx ldsfld System.Func`3<System.Byte,System.Int32,System.Byte> Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Ckjy6mEF_i4 br.s IL_00B1: call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) ldsfld Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Fqkx ldftn System.Byte Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::gs4A3yQz(System.Byte,System.Int32) newobj System.Void System.Func`3<System.Byte,System.Int32,System.Byte>::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Func`3<System.Byte,System.Int32,System.Byte> Xe2dzAc0.1JsybqZ3zM7fp8/Dow96Eaf.et6SGq_5if4QF::8Ckjy6mEF_i4 call System.Collections.Generic.IEnumerable`1<System.Byte> System.Linq.Enumerable::Select<System.Byte,System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>,System.Func`3<System.Byte,System.Int32,System.Byte>) call System.Byte[] System.Linq.Enumerable::ToArray<System.Byte>(System.Collections.Generic.IEnumerable`1<System.Byte>) stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetTypes ldc.i4.1 <null> newarr System.Object dup <null> ldc.i4.0 <null> ldc.i4.s 24 box System.Int32 stelem.ref <null> ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldnull <null> ldstr GetMethods ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) castclass System.Collections.IEnumerable callvirt System.Collections.IEnumerator System.Collections.IEnumerable::GetEnumerator() stloc.s V_8 br.s IL_013B: ldloc.s V_8 ldloc.s V_8 callvirt System.Object System.Collections.IEnumerator::get_Current() call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) stloc.s V_9 nop <null> ldloc.s V_9 castclass System.Reflection.MethodInfo ldnull <null> ldc.i4.0 <null> newarr System.Object callvirt System.Object System.Reflection.MethodBase::Invoke(System.Object,System.Object[]) pop <null> leave.s IL_0139: nop dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_10 nop <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0139: nop nop <null> nop <null> ldloc.s V_8 callvirt System.Boolean System.Collections.IEnumerator::MoveNext() stloc.s V_11 ldloc.s V_11 brtrue.s IL_0104: ldloc.s V_8 leave.s IL_0161: ret ldloc.s V_8 isinst System.IDisposable brfalse.s IL_0160: endfinally ldloc.s V_8 isinst System.IDisposable callvirt System.Void System.IDisposable::Dispose() nop <null> endfinally <null> ret <null>
fad4021a893533e4b98989853c0006f0 (640 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙