obi.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 61/73 Related 2777
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 291.50 KB (298496 bytes)
Compile time: 2020-03-09 22:32:47
MD5: 1aa3b48f61ce39ef0bdd876f0281a547
SHA1: 4fc507b19c1e9dc0dfecd9cf11290cdf645b9c4a
SHA256: 3b95e3d63c49f6a1ba300efb9efefa182ce1792444ffaa3df9cb59d6cc20f660
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-04-24 01:48:03
Last submission: 2020-04-24 01:48:03
Filename detected: - obi.exe (1)
URL file hosting
hXXp://onlinebuy24.eu/themes/classic/plugins/obi.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-04-23 16:09:04 [61/73] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x48484 296448 3928cbd637e1d5f19d0f231844f1d8cd 6f79dd6ce3b37ac2f30ab6adfd57edc5813bacbb
.rsrc 0x4c000 0x300 1024 1536caae3f9e380e441194b2c491a090 788d662caf597f441b14807580e96557ee83a48c
.reloc 0x4e000 0xc 512 010cb35a925f2173d3c9d0e33fdb269d e9b11b66b440ab98c7fcca257349832a0a6fef3e
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
BCRYPT.DLL
psapi.dll
mscoree.dll
vaultcli.dll
IP Found
0.1.2.3
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-04-24 01:48:04