cpu64.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 1
File details Download PDF Report
File type: PE32+ executable (console) x86-64, for MS Windows
File size: 837.00 KB (857088 bytes)
Compile time: 2019-12-01 09:35:17
MD5: 068e8e799a0f4827c91edce6e45c78b6
SHA1: d2e5b84e8220628b972ec9c9c20f74d5c0f93642
SHA256: 981b6c2c451a7a3b49486db58801af7442738145b28f1c372df3216dcb6013fd
Import hash: 563557d99523e4b1f8aab2eb9b79285e
Sections 3 UPX0 UPX1 .rsrc
Directories 4 import resource tls relocation
Anti Virtual Machine 1 Bochs & QEmu CPUID Trick
First submission: 2020-01-08 04:30:07
Last submission: 2020-01-08 04:30:07
Filename detected: - cpu64.exe (1)
URL file hosting
hXXp://112.216.100.210:443/o/cpu64.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
UPX0 0x1000 0x4d0000 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
UPX1 0x4d1000 0xcc000 835584 dc56d18486ab582fc3f2ee0d627b0b0e 52016fd5522b5a4e137ecf0fd45f9dfb49ea45c0
.rsrc 0x59d000 0x5000 20480 b0ed0b7b8c4a8220bca8c32bca8e0130 d15b69a4d3c8ad21224bc75c82a53d182e3209d2
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
ADVAPI32.dll
SHELL32.dll
psapi.dll
USER32.dll
WS2_32.DLL
IPHLPAPI.DLL
KERNEL32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-01-08 04:30:08