gwazobia.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 52/71 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 444.50 KB (455168 bytes)
Compile time: 2019-10-25 07:21:42
MD5: 3ca3a85a41d2b6494c47756b82df2101
SHA1: 7c030234916fc2ddd7d06241087636728a6aebd1
SHA256: 3378c59eba9f93c3b7dcb589c53f63fcf7e0baba98aadbff3b994653e9dc44df
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 2 .text .reloc
Directories 2 import relocation
First submission: 2019-11-02 02:24:07
Last submission: 2019-11-02 02:24:07
Filename detected: - gwazobia.exe (1)
URL file hosting
hXXp://torishima-qa.com/gwazobia.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-01 16:00:34 [52/71] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x6eda4 454144 10ac3cb4f606aa7097d1319c6b28b487 687e0893de18fd82870eff41134fc3871f85fc63
.reloc 0x72000 0xc 512 7d480ea256324777ca3637f111812f5f 73c455aef41a602887cabdb0960f1d03b74e726d
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
{0}\{1}.xml
System.Xml
FIle type: Library
USER32.dll
mscoree.dll
GDI32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-02 02:24:07