MalScore
100/100
MalFamily
Malicious

documenti.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 17/69 Related 2494
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 815.50 KB (835072 bytes)
Compile time: 1993-07-03 23:00:36
MD5: 2288ae3cc673244a3324f85a6f1e3a33
SHA1: 735f236cbb3e026cc30b0817ebd99354a56e9325
SHA256: 6e7b3deba13e0946cd1c473a58cfc928ba67aba920f51b1ade2bfdc28aaa9dc7
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 5 9r9hDkB .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2018-12-05 14:35:28
Last submission: 2018-12-05 14:35:28
Filename detected: - documenti.exe (1)
URL file hosting
Antivirus Report
Report Date Detection Ratio Permalink Update
2018-12-04 11:33:57 [17/69] VirusTotal
PE Sections 3 suspicious
Name VAddress VSize Size MD5 SHA1
9r9hDkB 0x2000 0xb759c 751104 c9051b7d9f920446cdb10744acf6772d 3deeb98dbf187603b45220b5ec694a1864673de5
.text 0xba000 0x137b0 79872 3918398cc6506ec0fe837679ae5fc2dc 92c0e4062f14e2b5c5237b2ad9289f8205851419
.rsrc 0xce000 0x620 2048 75688dc718f0274d1fae9dcc4b6f09f3 1893bcf6ea0f7779915ab9a11e83e4d1428ac4d4
.reloc 0xd0000 0xc 512 b34b302a289e0101a4d3af859bdec524 22e575f2d145edbac09ed8286ba8ceffad80bcc2
0xd2000 0x10 512 12b455ee91b27603019103553ab64c11 26858993a21525d9982a9ce8f23066e9d35ebdab
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
KERNEL32.dll
mscoree.dll
IP Found
11.2.19.1
URL(s)
No URL found
Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven05b_64 Seven05b_64 VirtualBox 2018-12-05 14:26:51 2018-12-05 14:29:50 179

2 Behaviors detected by system signatures

Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven05b_64 Seven05b_64 VirtualBox 2018-12-05 14:26:51 2018-12-05 14:29:50 179

0 Summary items with data

Files

Nothing to display

Read Files

Nothing to display

Write Files

Nothing to display

Delete Files

Nothing to display

Keys

Nothing to display

Read Keys

Nothing to display

Write Keys

Nothing to display

Delete Keys

Nothing to display

Mutexes

Resolved APIs

Nothing to display

Execute Commands

Nothing to display

Started Services

Nothing to display

Created Services

Nothing to display

Detected family: #Malicious

TheSystem Itself @ 2018-12-05 14:40:02