wxe-ealqd-994

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 51/73 Related 2
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 408.08 KB (417876 bytes)
Compile time: 2020-01-22 11:48:28
MD5: 07b72f38ed7c6d575e1fc04234704f9d
SHA1: 897ba21bef643ebaa27493785396dd65784ea192
SHA256: 0f3a460398d7c81c28d3d4839a6bd219c2c94c26febea9abf1dbc0fad2659b4d
Import hash: e38d833438252ea576e38d5d5469f738
Sections 4 .text .rdata .data .rsrc
Directories 2 import resource
First submission: 2020-02-13 19:09:05
Last submission: 2020-02-13 19:09:05
Filename detected: - wxe-ealqd-994 (1)
URL file hosting
hXXps://work4sales.com/wp-content/uploads/wxe-ealqd-994/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-01-30 00:24:02 [51/73] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x26e86 159744 5c491cb45ba59ef3cc878d9eeb4f57b2 619074c510b7fc2d1c15ce632bf5656d224740c6
.rdata 0x28000 0x9d50 40960 7a9136fd0d469a5a307dae046ee2fbbc 6b455024f9b29886b95e46eeb6ce7baf53ef1c06
.data 0x32000 0x751c 16384 68c94319965c4cd0c5c93d3f859e0232 8fb593b168385bc6d6ecca454df9d2332123cb58
.rsrc 0x3a000 0x2fb88 196608 0e6a1ec8499c62078c34c7c1803dd157 d3f6a6be36963a421b890e7ad1241fa847490dc5
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ v6.0
Microsoft Visual C++ 5.0
Microsoft Visual C++
File found
FIle type: Library
ntdll.dll
crypt32.dll
KERNEL32.dll
USER32.dll
ADVAPI32.dll
SHELL32.dll
MSIMG32.dll
comdlg32.dll
comctl32.dll
GDI32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-02-13 19:09:07