cryp9.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 25/68 Related 2165
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 470.50 KB (481792 bytes)
Compile time: 1977-01-16 12:08:22
MD5: 1178bb45b7ab1d6e3487fc67be3d0505
SHA1: 664d093e47dae64488a8828a1f33699735c0b0eb
SHA256: 97b42e993ec5a3a94e684a12e231cba6a67fab8ff5aa2e4be1ba15a01f015784
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 5 +: b_g .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2018-10-24 11:15:07
Last submission: 2018-10-24 11:15:07
Filename detected: - cryp9.exe (1)
URL file hosting
hXXp://linetrepanier.com/wp-data/cryp9.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2018-10-22 19:34:03 [25/68] VirusTotal
PE Sections 4 suspicious
Name VAddress VSize Size MD5 SHA1
+: b_g 0x2000 0x20a4 8704 636df65e27477fa6b85124294f196465 612da5a82436bb34feb06848af853d4d04cf62dd
.text 0x6000 0x72770 468992 47cea74c21c357b06ef7d2d7da8b9e80 c12d62bc4da7701d74a7e299ff5ffa58de5a12b1
.rsrc 0x7a000 0x650 2048 007f7cc6cefff16b6823fb1e080ecce3 3fd87c63be9fa4ebb92c89faef8abe06e55e3465
.reloc 0x7c000 0xc 512 fda0c67ff62fa6a5da3f6b9576b63ae1 2c9e15247d2f21ea7d9798ca7ce00c7564f44045
0x7e000 0x10 512 9d150215d8fc0d2b752b5fe808e35126 eed32589a64238a90f8b9585ecd38f9bdd50ea63
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
USER32.dll
mscoree.dll
IP Found
2.4.22.4
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2018-10-24 11:15:07