p_13095s1a21.jpg

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 59/71 Related 2772
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 32.50 KB (33280 bytes)
Compile time: 2019-08-02 08:47:51
MD5: 00174f6351a98a7b225b9f745f6e67de
SHA1: 0b8741728df6e8405a0920b0eb772dd78e91f54d
SHA256: e670623a56793001dc66b95d934767e93e49035875b7cca07548ba65c3074948
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-07 09:30:03
Last submission: 2019-12-07 09:30:03
Filename detected: - p_13095s1a21.jpg (1)
URL file hosting
hXXp://3.top4top.net/p_13095s1a21.jpgVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-06 14:38:57 [59/71] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x7804 31232 04f9217f70b09814fc341ce434b77a49 e8feed8300da5ac8821e533deed547bfb264200c
.rsrc 0xa000 0x240 1024 5b346ed223699f15252c1fdad182859f 411d3476e3b469c835f200b9e3403b1400890ac3
.reloc 0xc000 0xc 512 b8ed2a3c5736b03ea7e70f910ce045a5 640800176a49c8686c1328d36b665aaa9632d05c
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
USER32.dll
AVICAP32.dll
mscoree.dll
WINMM.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-07 09:30:04