wyfdggj.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 50/71
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 1049.50 KB (1074688 bytes)
Compile time: 2019-11-18 03:55:02
MD5: 19fed883b92d7ff0db15ed1a5f95ac85
SHA1: dfdb79658921ccb45ba299db9aa4db29eb81e6c1
SHA256: 7e5feffbbe7395e197dd26c54a68a61c8673d3e324bb0843fc5a86ac21d87d94
Import hash: 8bf2910599f85e4fdfb993b5322c9ff2
Sections 8 nn8=R K[ a.*H\cC- Jq`yG6ol cE5a9ml. AuGMN"#g edKWSHDJ )9K3Uj.E Ub-/:R1h
Directories 6 import export resource debug tls relocation
First submission: 2019-12-03 11:39:05
Last submission: 2019-12-03 12:21:09
Filename detected: - wyfdggj.exe (2)
- wyfdggm.exe (1)
URL file hosting
hXXp://fuoge.pw/j/wyfdggj.exeVirusTotal
hXXp://gwtyt.pw/m/wyfdggm.exeVirusTotal
hXXp://[www].fuoge.pw/j/wyfdggj.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-02 16:01:00 [50/71] VirusTotal
PE Sections 6 suspicious
Name VAddress VSize Size MD5 SHA1
nn8=R K[ 0x1000 0xa9000 323584 7ba5b589fbb65803e6c3543eea5042cf a2ab1dbfc351a232d358e557baaa5247555d5ed9
a.*H\cC- 0xaa000 0x1a000 46080 9cf69054ca2b328401aa25985358ee3b b481414756974813a2a48c497b13c4a953d4483c
Jq`yG6ol 0xc4000 0xb9000 697344 5dfb776a27302bceb11cd4a6c585f1c7 bf18735b65e273f392b52465f7696a0ebbea4734
cE5a9ml. 0x17d000 0x1000 512 d1e3b1ae1ad487c8dd0b4ddce78d8bf8 5d9db2be116a1df1b90b6cc4d8d2d78748f969b6
AuGMN"#g 0x17e000 0x1000 512 3c5f9dfb84fe5c3009c997a2d9afa5e2 a1032a7933535a5e8d0d9ae606d3af8d9f84bd86
edKWSHDJ 0x17f000 0x1000 512 d4fe5abcd9468fea44e6477605310c51 90c751fdc1fc012beabc3316d3c9a9bfca6e0842
)9K3Uj.E 0x180000 0x2000 5120 6500ec68ee9409d90446908dfc5a80a8 8447b1adfc116f12a647c324aa5c40d5caac4c47
Ub-/:R1h 0x182000 0x1000 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
ASProtect V2.X DLL -> Alexey Solodovnikov
ASPack v2.12
ASPack v2.1
File found
FIle type: Library
WINHTTP.dll
esent.dll
ole32.dll
USER32.dll
OLEAUT32.dll
mscoree.dll
ADVAPI32.dll
KERNEL32.dll
SHELL32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-03 11:39:07