phyno2811.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 53/70 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 490.50 KB (502272 bytes)
Compile time: 2019-11-13 20:52:16
MD5: 2f1b58a2e8bffc952f333f68616606a5
SHA1: 2071c6e8b27b225af6d16ce6332789dac19a50c3
SHA256: 7e3f519771ac172d0ed3b8adf4c19109871e4bf7a5af330a1ff00cc7d626da99
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-03 08:06:03
Last submission: 2019-12-03 08:06:03
Filename detected: - phyno2811.exe (1)
URL file hosting
hXXp://185.112.250.128/phyno2811.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-02 16:01:54 [53/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x79f44 499712 99908c5bc5ebf3351bc019ff7a59a937 a84493519d0a638152073ce68b6ee7438962eed9
.rsrc 0x7c000 0x5c8 1536 ef43f2579a20913346c3d704f2f5be50 0348b87d37adab08cb8f20cb378ebb0286abc0a6
.reloc 0x7e000 0xc 512 befc7047e2b91a2d286fbb286512be61 dc7608cecd1288bf7148e14df4acf34dc36c77e4
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-03 08:06:04