2c.jpg

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 46/71
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 1471.50 KB (1506816 bytes)
Compile time: 2019-11-29 00:38:52
MD5: 0eef75deaea6806d3dde5b83c3b625f6
SHA1: dcaedcc047db68c979263293a0a767e52bc88d15
SHA256: 7ce52df2e1186532c119b3ad42fad1012bb78e6393bff209086dec386bbd49af
Import hash: 7308c76939ed712aae20bd3cc6bd67db
Sections 4 .text .rdata .data .rsrc
Directories 2 import resource
First submission: 2019-12-03 02:54:11
Last submission: 2019-12-04 08:57:06
Filename detected: - 2c.jpg (3)
URL file hosting
hXXp://leadconvertgroup.com/.well-known/pki-validation/2c.jpgVirusTotal
hXXp://forbesriley.net/.well-known/pki-validation/2c.jpgVirusTotal
hXXp://cts24.com.pl/cache/_system/2c.jpgVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-02 15:59:08 [46/71] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x27ea6 163840 c42b5b33255c6753b01aa7921c830a11 c816722312c59af43ad84c5beb68aa6da0bd4811
.rdata 0x29000 0x1258e 75264 10b2d91f5f5e88b9cb988aafe7c41ade 3228ae7061ed76bb53e8b0d84d14935569afefd2
.data 0x3c000 0x5200 6144 88dad12d1833b1cd4eeb9f3066030cbe 7721a8d88a0e2c9626b9207a3a1993902886fcf1
.rsrc 0x42000 0x1cbb00 1260544 360f70507c0ade71eba246d7df9426b6 41bd27c8965392b4e29ae8f7b9e11a2b00e9a0e9
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
File found
FIle type: Library
mscoree.dll
USER32.dll
KERNEL32.dll
d3d9.dll
ADVAPI32.dll
SHLWAPI.dll
RPCRT4.dll
OLEAUT32.dll
opengl32.dll
ACTIVEDS.dll
pdh.dll
OLEACC.dll
UxTheme.dll
AUTHZ.dll
ole32.dll
VERSION.dll
traffic.dll
GDI32.dll
TAPI32.dll
AVIFIL32.dll
gdiplus.dll
urlmon.dll
QUARTZ.dll
WINMM.dll
comdlg32.dll
IP Found
8.5.41.9
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-03 02:54:13