TypeIdmtemSPOBYU.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 62/73 Related 2780
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 582.00 KB (595968 bytes)
Compile time: 2020-03-03 06:35:20
MD5: 1b7b0754acfe92577070d8a3add38290
SHA1: f75fb3051e4491281d62602aa31c563d310fab61
SHA256: d509d5b477c690a8aab177f7b76506ff8ff7f5436d736f65dccb2593e6113db6
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 4 .text .sdata .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-05-19 09:06:07
Last submission: 2020-05-19 09:06:07
Filename detected: - TypeIdmtemSPOBYU.exe (1)
URL file hosting
hXXp://[www].wnksupply.co.th//images/TypeIdmtemSPOBYU.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-05-15 16:05:47 [62/73] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x8d404 579072 69eb17a3da984d594e176383be76df7b 821ba4b24b30cc5f8b9772b643b8b9986caf5cf5
.sdata 0x90000 0x3407 13824 9133c9c33aae6721765a338f2c606ea3 c3fcbc3ba87a95cb83a261c457f706f845c89a0d
.rsrc 0x94000 0x54e 1536 bf540a6363c287438b6c90e97aa62482 614bd4b846790e1e840bd8bdc28fee6ac4768428
.reloc 0x96000 0xc 512 e17eacef0507ee222b04c4103beb3264 6b197bd912bcb88f6c7d561b75b8dcb7ea807076
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
1.1.1.1
URL(s)
file:///

#infosec #automation

TheSystem Itself @ 2020-05-19 09:06:09