UserMetu.jpg

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 617.00 KB (631808 bytes)
Compile time: 2099-09-03 09:01:32
MD5: 2def1036756f9042b77865a8f35dedf8
SHA1: d05b042b23262f9927303f4a321cfa9a0367bf37
SHA256: fa5ef26d9952f9043fce2003f330ef8be0047a378199d173791ce1c4bda7170c
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-11-15 09:15:03
Last submission: 2019-11-15 09:48:04
Filename detected: - 56908001.jpg (1)
- 13067890.exe (1)
- 6509877.exe (1)
- 5313078.jpg (1)
- 2609112.jpg (1)
- 1065200.exe (1)
- 205911.jpg (1)
- 336219.exe (1)
- 20981.exe (1)
- 11206.jpg (1)
- 4107088.exe (1)
- UserMetu.jpg (1)
URL file hosting
hXXp://35.181.60.96/7/56908001.jpgVirusTotal
hXXp://35.181.60.96/7/13067890.exeVirusTotal
hXXp://35.181.60.96/7/6509877.exeVirusTotal
hXXp://35.181.60.96/7/5313078.jpgVirusTotal
hXXp://35.181.60.96/7/2609112.jpgVirusTotal
hXXp://35.181.60.96/7/1065200.exeVirusTotal
hXXp://35.181.60.96/7/205911.jpgVirusTotal
hXXp://35.181.60.96/7/336219.exeVirusTotal
hXXp://35.181.60.96/7/20981.exeVirusTotal
hXXp://35.181.60.96/7/11206.jpgVirusTotal
hXXp://35.181.60.96/7/4107088.exeVirusTotal
hXXp://35.181.60.96/7/UserMetu.jpgVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x7cc50 511488 adff948bbdbeb31c3c4f7c8cbc51eb5d 2ace41e298e04c6314e0d2ae2d2e228345af5d5d
.rsrc 0x80000 0x1d074 119296 0e6d127792649265052bd732a5cdf58f 5f6a6242004302071ca2e32d0cd321dc701d8c9f
.reloc 0x9e000 0xc 512 2f051fcc219acf2f9180b18d1cad006f 70198a6c786a5e1978a444b0ed628ca88838f513
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
AgileDotNetRT64.dll
KERNEL32.dll
AgileDotNetRT.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-15 09:15:05