sh.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 42/67 Related 2629
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 564.50 KB (578048 bytes)
Compile time: 2001-06-27 15:01:41
MD5: 41c7096caf5ab63519d30cdbb8633696
SHA1: 8273b145761adf65b32fdea9bb6c2df94e61fcb3
SHA256: d97f3a0bcea8dbaecf9e0a6544d2942eee98fd1d6efa0aa5fb7acf9e92d26827
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2018-10-26 04:48:19
Last submission: 2018-10-26 04:48:19
Filename detected: - sh.exe (1)
URL file hosting
hXXp://princessbluepublishing.com/sites/sh.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2018-10-23 16:47:04 [42/67] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x8c414 574976 e714aa42e87eed51c9c8111d859f35ab 34e8d9f1336f41d5c31b550523dd2c302d9a60b1
.rsrc 0x90000 0x638 2048 72785dbbc40f5333fbb56086c24cf5be 35c74cd697052db6fd77122967f72f6964d98e05
.reloc 0x92000 0xc 512 272999daef36fe3618cda25ee770a0f3 0c1b87c2f289b0df8c6722eb60482e33f73c5346
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
7.2.5.2
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2018-10-26 04:48:35