obi.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2790
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 282.00 KB (288768 bytes)
Compile time: 2020-06-10 00:34:30
MD5: 41ec498bf029a40bd6f764f059762d62
SHA1: 789de79e92eed621ab55bd64f25807146e509099
SHA256: 316e2a45c914219de7bdcaa27304d40412e8d85f21016ce8923c1de6d48f2a7a
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-09-09 20:42:04
Last submission: 2020-09-09 20:42:04
Filename detected: - obi.exe (1)
URL file hosting
hXXp://ivobrandao.com/wp-admin/maint/files/obi.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x45da4 286208 7a4274d6bf8205b5dd784db445015351 aebbff6dd308abacc7179e71212208e61ea32c70
.rsrc 0x48000 0x528 1536 10567179ac89d7310b9abd61c8884f41 94123b145dd652e142e535ce91ee13d14f0ab3c3
.reloc 0x4a000 0xc 512 931a0ac27b64fbcf124211bacf6d179e ff376dc4e5bce2e8d7cbd2c56a999d3f45d19f2a
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
BCRYPT.DLL
mscoree.dll
psapi.dll
vaultcli.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-09-09 20:42:05