chb.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2791
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 282.00 KB (288768 bytes)
Compile time: 2020-06-10 00:41:30
MD5: 3cea3d1d13d90f931bae977b73d545db
SHA1: e5f31af6719a30ae780aed4e7f668fa9c14553e5
SHA256: f5c5bb6cc50ad8b292fee420d4aef9d5100d6703f6ef10b52fe98d98ce9bee54
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-09-09 20:45:04
Last submission: 2020-09-09 20:45:04
Filename detected: - chb.exe (1)
URL file hosting
hXXp://ivobrandao.com/wp-admin/maint/files/chb.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x45df4 286208 dc03369d91b5bdc43d4973187cc009fa 2d071c152096957eb4669932f0d0a85ad7c34ee0
.rsrc 0x48000 0x540 1536 f3a57cbd041dadf25fe30d30f4e4c3ef 810385fad25a16b2f324e559648f81426aee3ad4
.reloc 0x4a000 0xc 512 9c9525cc4e3fae4620037148c08ac74a 82ef05ad943a8d4740829873740ec5c950ba70a7
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
BCRYPT.DLL
psapi.dll
USER32.dll
mscoree.dll
vaultcli.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-09-09 20:45:05