RevisedProfma.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 46/70 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 332.50 KB (340480 bytes)
Compile time: 1984-12-31 03:24:12
MD5: 2017be01ecc9df73a8f028a861cb129a
SHA1: c72e9480467783118b01c8c6516a0d0d1eb35d24
SHA256: 64557d4bd2ce0fb82a3f4ed969d7bbb3f0d03419f924d41c8985769f878c58e7
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-11-01 10:15:05
Last submission: 2019-11-01 10:15:05
Filename detected: - RevisedProfma.exe (1)
URL file hosting
hXXp://habi7tit.com/RevisedProfma.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-31 16:06:09 [46/70] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x52664 337920 529f702fe7506bbc1f68e9da40640fd0 87767efb3a4d568a6205a5d616a84a6d17669891
.rsrc 0x56000 0x5c8 1536 057772c4944ad84034c23b19100f9530 a0cb1ac795d5ee94e1d0b14e247281f51b40305d
.reloc 0x58000 0xc 512 3294e5d6b0010ea2117eef56b8c65a7b 2af028a5ec33cb6866d4d88e12e20ddd3b7b896c
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
9.13.18.22
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-01 10:15:05