Analysis Date2013-08-14 03:47:14
MD5b4417c76cbc5fcff0941d49fc675d4e1
SHA119c908fd9903659e1b7ff4d6a401a697c96c4e99

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386 32-bit
Section.text md5: 3d6cf14d66f5db6a6c884c005b814ec8 sha1: a31e48e6ad8cfdc42e8e4231788d06a8f8650fe5 size: 25088
Section.data md5: 5193e0d84e4a6b2d6de32f16c0a3cacf sha1: 421ed7155d144bb2a02216b393ae46ceff3418ed size: 1536
Section.rsrc md5: 0fde9007b6c6dff02c5c189328b4c211 sha1: a64562e90e4d47be74ae90c3653d9738433f0485 size: 1024
Section.yvs md5: d41d8cd98f00b204e9800998ecf8427e sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 size: 0
Timestamp2008-04-13 18:33:58
Pdb pathverclsid.pdb
VersionLegalCopyright: © Microsoft Corporation. All rights reserved.
InternalName: verclsid.exe
FileVersion: 5.1.2600.5512 (xpsp.080413-2105)
CompanyName: Microsoft Corporation
ProductName: Microsoft® Windows® Operating System
ProductVersion: 5.1.2600.5512
FileDescription: Verify Class ID
OriginalFilename: verclsid.exe
PackerMicrosoft Visual C++ 7.0
PEhashf91fa1787bc7aa5d4bb2bb76ef99941edcbd4047

Runtime Details:

Screenshot

Process
↳ C:\malware.exe

Network Details:


Raw Pcap

Strings