r

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 327.50 KB (335360 bytes)
Compile time: 2020-09-04 19:40:42
MD5: 32a6c28727d98c8dc0421f2d30d12c03
SHA1: ba1bb102d38be59de5e6b7c606392041d61dd642
SHA256: 127eee06c3e0cc88558614bf9592282e92b0bcdd9c92e72576f5de9fa3c6d2fe
Import hash: 5da881533768431b18ee2187080c0f8c
Sections 4 .text .rdata .data .rsrc
Directories 3 import export resource
Anti Virtual Machine 1 VMCheck.dll
First submission: 2021-01-31 11:54:09
Last submission: 2021-01-31 11:54:09
Filename detected: - r (1)
URL file hosting
hXXp://daprofesional.com/data4/r/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x321f9 205312 854e0ee7911f2042483f7aae1fb7f8fa f0ba272c4f828b50143e2e365e5f86b45b1c844f
.rdata 0x34000 0xcae7 52224 724b3e03f309a0ab6cd2d31ff053e23e 9ab12f2fe949eac9bb0cc1cf0adfa1ef60c8a149
.data 0x41000 0x78b8 10752 4983fcf8596dfe721568d57681436b21 4924991958f506e2d0d5757f9b27152561dbc84f
.rsrc 0x49000 0x101d0 66048 e9e09441fb1697527597bb642eaaf807 1d273feafdb1dce4e5c978b1c8a79c18893abc82
  • API Alert
  • Anti Debug
  • PE Exports: r
    • 0x4015f0
      DDltyusifghffDDCseRFFF
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
VC8 -> Microsoft Corporation
File found
FIle type: Object
hhctrl.ocx
FIle type: Library
KERNEL32.dll
ntdll.dll
ADVAPI32.dll
mscoree.dll
mfcm90.dll
USER32.dll
SHLWAPI.dll
OLEAUT32.dll
oledlg.dll
comdlg32.dll
comctl32.dll
OLEACC.dll
SHELL32.dll
ole32.dll
GDI32.dll
%s%s.dll
IP Found
1.0.0.1
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2021-01-31 11:54:11