MalScore
100/100
MalFamily
Fnhe

WindowsU2D.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 40/60 Related 2694
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 275.00 KB (281600 bytes)
Compile time: 2014-11-12 19:04:24
MD5: 433468a49389c396059fe57532701544
SHA1: 5f48880a21067f55fb475783c3cd383d66e4065e
SHA256: 4c0a672a8b0e9e488895f0b037ce6b2f338fbaffaa7d63b3e76e17e421dd0f49
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 4 .text .sdata .rsrc .reloc
Directories 4 import resource debug relocation
First submission: 2017-06-12 14:44:44
Last submission: 2017-06-12 14:44:44
Filename detected: - WindowsU2D.exe (1)
URL file hosting
Antivirus Report
Report Date Detection Ratio Permalink Update
2017-05-30 13:47:11 [40/60] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x1b364 111616 7f22848d9e877a805ba0f591ba939457 3ef29a4eb86c63d743bae59724e831589d1411c8
.sdata 0x1e000 0x138 512 e58288b3d58d6d910a47c2a2aa934fd1 a27fee428361844c9ae09dd9d9fd88fe2d02e7bf
.rsrc 0x20000 0x28e80 167936 ed7b5a9831aefa81e530071d831e0155 40e0a04747c9df661834cb6af4e774a449fb6aa6
.reloc 0x4a000 0xc 512 63825e2f731240d3492606c43d6c5ff8 3c0348e19157dea8fb9bad14444fe43fa72d3ff0
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Compressed
ZIP File(*.zip)|*.zip
FIle type: Portable
PDF(*.pdf)|*.pdf
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
http://
Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven05b_64 Seven05b_64 VirtualBox 2017-06-12 15:11:11 2017-06-12 15:14:02 171

2 Behaviors detected by system signatures

Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven05b_64 Seven05b_64 VirtualBox 2017-06-12 15:11:11 2017-06-12 15:14:02 171

0 Summary items with data

Files

Nothing to display

Read Files

Nothing to display

Write Files

Nothing to display

Delete Files

Nothing to display

Keys

Nothing to display

Read Keys

Nothing to display

Write Keys

Nothing to display

Delete Keys

Nothing to display

Mutexes

Resolved APIs

Nothing to display

Execute Commands

Nothing to display

Started Services

Nothing to display

Created Services

Nothing to display

Detected family: #Fnhe

TheSystem Itself @ 2017-06-12 16:42:12