5a2eec141864de49a45bb29ac52dbe6b.php

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 51/70 Related 2708
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 333.00 KB (340992 bytes)
Compile time: 2019-08-17 23:47:28
MD5: 131c2c561ed08be561321f706140bd43
SHA1: 21d665dd0c37648ab018fff4b06889e14cbe7e16
SHA256: 33d2ee7d7ef16344682b121cee3fb189dbdcc070ab7552b150360e418d700a4c
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-09-12 03:30:06
Last submission: 2019-09-12 03:30:06
Filename detected: - 5a2eec141864de49a45bb29ac52dbe6b.php (1)
URL file hosting
hXXp://web.riderit.com:8000/ajp/public/5a2eec141864de49a45bb29ac52dbe6b.phpVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-09-12 00:50:35 [51/70] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x529a4 338432 db4f526c165709faeb274c06c329e5d8 b63ba9b396834c9fc62526ac44d5f4a85c3b16d7
.rsrc 0x56000 0x5a0 1536 e3bd0222ff9c88be936b91fcfd133ba5 1cae5b414d907f8b46c133525bf658ac9ffa5ec2
.reloc 0x58000 0xc 512 520241ef45f48e2509e4c49ae0af9857 892e2ee24033acf68402558a4ed69d68a06a24f5
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
IELibrary.dll
USER32.dll
vaultcli.dll
psapi.dll
KERNEL32.dll
mscoree.dll
SHLWAPI.dll
ADVAPI32.dll
SHELL32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-09-12 03:30:07