shaht64.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 7
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, RAR self-extracting archive
File size: 1696.78 KB (1737501 bytes)
Compile time: 2010-03-15 07:27:50
MD5: 1392e15180916466b42d11b2547913a7
SHA1: 8ebdb6e4c4c81d6197e7769c76aef238fdf5de72
SHA256: 50b26e63fa0cd47383e5f41d65f755a0bf2b52fdfd3d75d95b68c17a98a3ab76
Import hash: 335172068aa2111ea57057a8ab38eb5e
Sections 3 UPX0 UPX1 .rsrc
Directories 3 import export resource
First submission: 2020-06-26 11:21:05
Last submission: 2020-06-26 11:21:05
Filename detected: - shaht64.exe (1)
URL file hosting
hXXp://shahtoba.faqserv.com/shaht64.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
UPX0 0x1000 0x19000 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
UPX1 0x1a000 0xc000 46592 a92a159948604a739e856b0158beb921 f03c02cdfb93f9272ccaed91fdc601eacf448be3
.rsrc 0x26000 0x1000 4096 8c2ff62ac0331c2dc889b1d87abacd73 abc360362e033f36a42436be7e9fb976c5468fda
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
UPX v0.80 - v0.84
UPX -> www.upx.sourceforge.net
File found
FIle type: Data
mnzk10.dat
mnzk11.dat
FIle type: Library
ADVAPI32.dll
SHELL32.dll
USER32.dll
KERNEL32.dll
comctl32.dll
comdlg32.dll
OLEAUT32.dll
ole32.dll
GDI32.dll
IP Found
No IP detected
URL(s)
http://schemas.microsoft.com/SMI/2005/WindowsSettings

#infosec #automation

TheSystem Itself @ 2020-06-26 11:21:06