UPS.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 18/70 Related 2780
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 331.50 KB (339456 bytes)
Compile time: 2019-11-20 03:13:05
MD5: 000b5bd946d7930da674b744a2e0e75d
SHA1: 1586f05afcc78e8bbd728963e12c93a7fe280d8d
SHA256: 00df98a2e430226a6d6cc659429a567f6e11cbe0ac14db7b553640b523ba7171
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-11-21 08:45:05
Last submission: 2019-11-21 08:45:05
Filename detected: - UPS.exe (1)
URL file hosting
hXXp://curly-yoron-0282.sunnyday.jp/UPS.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-20 00:57:01 [18/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x516c4 333824 7f43ad9baafe16ebacf440417dc62eb3 ea2fd58726097495d907d7a00dd89f0e0f869204
.rsrc 0x54000 0x1188 4608 4863f2f2a821e53a38696d710453b54d c5272d0b8f16915a0ee58c2777261cc7a3827c6a
.reloc 0x56000 0xc 512 9da72cb2b0a9bedc5d39e7cacdfe06d2 53efb7662e376151c27ccdf8a031a64eb8eb0434
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-21 08:46:06