gmb.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 46/69 Related 2620
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 743.50 KB (761344 bytes)
Compile time: 2019-09-09 09:31:41
MD5: 3646b7b40de456c3960de34b613438b0
SHA1: 77c20a59cb30926f1176007f5d4e8e6f8397ce4a
SHA256: aec9db32cb36cb8ac3c5113a937db4190bf6745746633d02c821a3b8528063c6
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-09-13 09:57:07
Last submission: 2019-09-13 09:57:07
Filename detected: - gmb.exe (1)
URL file hosting
hXXp://oppofile.duckdns.org/c/gmb.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-09-12 06:41:19 [46/69] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x8f1f4 586240 dad7a367124158a99def6f586d18a82c 50ac802de42331ba4b400fc9c7f3cca269da036d
.rsrc 0x92000 0x2a770 174080 1dbe3dbf42da083297083f07530e35cc 742e85f6bb25413f07f94ebb6ddbccc3c421012b
.reloc 0xbe000 0xc 512 e5b67818b90a28d1404acca497d68271 c0b160a008dd9d4017380f6670eb3be15c3ae70c
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
ModuleSearches.dll
mscoree.dll
IP Found
1.6.9.6
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-09-13 09:57:09