bab.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 23/70 Related 2708
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 701.00 KB (717824 bytes)
Compile time: 2019-07-28 09:01:41
MD5: 2ede49624073770c932b8a00762be61d
SHA1: 830e43066e1b305a24fb6c721a8e081f2b4f14d5
SHA256: 5cf062a797ef60f4b09a0922710f36901210b7b5f24850ec37f29433bd3122b6
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-09-13 00:42:04
Last submission: 2019-09-13 00:42:04
Filename detected: - bab.exe (1)
URL file hosting
hXXp://plantorelaunch.com/components/dansk/bab/bab.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-09-12 16:30:56 [23/70] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x9d24 40448 7909bbce22cd4c25df5b8e74aa4654b1 133f48e6f8b9c12d8361a36631e02fe5854ae313
.rsrc 0xc000 0xa5164 676352 011d11bf4f71d8745ed60ca7b321cc93 b0f28ef8f999ce21858ca3127951d16fc5fc21a8
.reloc 0xb2000 0xc 512 b2071267d19bb455bcea80cc96883f54 c2f71097ab7a7bcdbe0487c09ddaabef4334ba4c
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Text
{0}.txt
{0}_{1}.txt
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-09-13 00:42:05