Upload files

By using Saferwall you consent to our Terms of Service and Privacy Policy and allow us to share your submission with the security community. Learn more

Summary

Like

Analyse score

1/ 14

1 antivirus venders flagged
this file as malicious

Last scanned

First submission

Basic properties

CRC32

0x5be34058

MD5

24bf8738d15e972ef5f42070acd4ff84

Magic

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows

SHA1

4f9099b3b3023548012cc64fc9bce172cc7930d2

SHA256

a7981e3f586cad91706fd434288467523f14b82bf41e2dca79b8808d1d3f3f25

SHA512

c2d62f3a40a371c010ebe2ebf946120840779e9f278525d2cd27da60e0d60f855e3aabb7a500b36e53ea413b213bfb09e65ce1627bbbff5c84bcf7aa9262667a

SSDeep

49152:ihx1UsVx+NMPXnHUte90m3ZQPYTZjRffxI89XJRlWO:C1Usj+NQHUte90m3bTZjRf5hlH

Size

2.50MB

TLSH

48c51924f203724aeeda8af1815bf63a4994153589702c93ca5d0dd43df29f35ca9f2b

Packer
  • PE: linker: Microsoft Linker(14.16, Visual Studio 2017 15.9*)[DLL32]
TrID
  • 55.2% (.EXE) Win64 Executable (generic) (10522/11/4)
  • 23.6% (.EXE) Win32 Executable (generic) (4504/4/1)
  • 10.5% (.EXE) Generic Win/DOS Executable (2002/3)
  • 10.5% (.EXE) DOS Executable Generic (2000/1)
Tags

ExifTool File Metadata

CodeSize

2.35MB

EntryPoint

0x25a3ad

ExifToolVersionNumber

12.96

FileSize

2.6 MB

FileType

Win32 DLL

FileTypeExtension

dll

ImageFileCharacteristics

Executable, 32-bit, DLL

ImageVersion

0.0

InitializedDataSize

135.00KB

LinkerVersion

14.16

MachineType

Intel 386 or later, and compatibles

MimeType

application/octet-stream

OsVersion

6.0

PeType

PE32

Subsystem

Windows GUI

SubsystemVersion

6.0

UninitializedDataSize

0

Submissions

Published Name Source Country
NubAsOfmbdSWZy5B++++5Qyb_payload_x86.bin web
N/A