MalScore
100/100
MalFamily
Malicious

cYJdsf.png

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 46/70 Related 2494
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 463.50 KB (474624 bytes)
Compile time: 2005-10-03 20:10:54
MD5: 1c38a5c4d5c7fce6a8c09d4bb4202455
SHA1: 6f39ee5b4b64e65445ed15b5ad04a64b5d90bcfa
SHA256: 58fad29f746d26cf85f10bfb93d91e4ed8cfe395e92094c411ed542ffaf8ee3d
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 5 JkwQ# .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2018-12-12 00:06:03
Last submission: 2018-12-12 00:06:03
Filename detected: - cYJdsf.png (1)
URL file hosting
hXXps://f.coka.la/cYJdsf.pngVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2018-12-11 17:52:52 [46/70] VirusTotal
PE Sections 3 suspicious
Name VAddress VSize Size MD5 SHA1
JkwQ# 0x2000 0x4ac38 306688 bdea41448672c65efb16a951082ec5c2 0f11d4e61fbac2f2e5c41d909bee1000d19c24cd
.text 0x4e000 0x27f38 163840 a31c8df9bae56dbacdaf1ab419827a1f 5f72baa86456d409bf0839c6d3a4bf36bca96b8b
.rsrc 0x76000 0x660 2048 c29066b136724f4a8f1e7f21d3db5e1f c9eee31fbbf66381c71a290327115e53f412c086
.reloc 0x78000 0xc 512 af6030c01e6eba925116898899038da4 b6604bbe807667433c6a7c17df1bfb8441e3b332
0x7a000 0x10 512 add21cd62be617db291dfeef0bafae13 540a8504aafa838ae3a8581bcca8d74c363222ad
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
KERNEL32.dll
mscoree.dll
IP Found
13.4.27.3
URL(s)
No URL found
Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven04b_64 Seven04b_64 VirtualBox 2018-12-11 23:57:16 2018-12-12 00:00:14 178

2 Behaviors detected by system signatures

Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven04b_64 Seven04b_64 VirtualBox 2018-12-11 23:57:16 2018-12-12 00:00:14 178

0 Summary items with data

Files

Nothing to display

Read Files

Nothing to display

Write Files

Nothing to display

Delete Files

Nothing to display

Keys

Nothing to display

Read Keys

Nothing to display

Write Keys

Nothing to display

Delete Keys

Nothing to display

Mutexes

Resolved APIs

Nothing to display

Execute Commands

Nothing to display

Started Services

Nothing to display

Created Services

Nothing to display

#infosec #automation

TheSystem Itself @ 2018-12-12 00:06:06

Detected family: #Malicious

TheSystem Itself @ 2018-12-12 00:12:02