f.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 18/71 Related 2628
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 633.50 KB (648704 bytes)
Compile time: 2019-10-15 00:21:31
MD5: 40135515fb68aa1df04d023512a9c974
SHA1: 4dbf491c653bcb8cee59b495316da8c39c8bc01b
SHA256: e9718c6b778b759b3d49588ca107cb2020fda5195136436134e591b61e1f08a0
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-10-21 17:30:05
Last submission: 2019-10-21 17:30:05
Filename detected: - f.exe (1)
URL file hosting
hXXp://gessuae.ae/wp-includes/images/smilies/f.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-15 01:58:32 [18/71] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x9d9d4 645632 e22475bc5bbe8c07c09a5223fa885fc0 e75c96d2f669294bbaabb480b7920daf4ee105c6
.rsrc 0xa0000 0x800 2048 a70cefd9e94dd0ef1c2e82435c0400a0 8ad69c8ba3763ebb7e0b16764bbab13eb47bae06
.reloc 0xa2000 0xc 512 0ca6d00760e3f55bfc69fcc58ac2c8c9 c1c891d2ca45c4a9ddbfc889f93313dffe264f3e
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-10-21 17:30:05