3242343243.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 30/67 Related 2238
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 122.00 KB (124928 bytes)
Compile time: 2018-08-13 17:00:12
MD5: 48ff3776bf9697d21b66db3ac415ba53
SHA1: defe31903006415bb26fa1039a13c288143af938
SHA256: 2b167cbc52a33517038c0de0e4b3264ebd35b4d394233fe9aa6714184c3d5d3b
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 4 .text .sdata .rsrc .reloc
Directories 3 import resource relocation
First submission: 2018-11-07 12:00:04
Last submission: 2018-11-07 12:00:04
Filename detected: - 3242343243.exe (1)
URL file hosting
hXXp://berengolisk.bid/forum/3242343243.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2018-11-07 03:07:49 [30/67] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x1cb94 117760 ed2cdb1fff2150570e97ca18a7d2fb9a 4510be5ae48876ffc38c95a0928390a949ecea0c
.sdata 0x20000 0x28 512 1d4960d5cd7a00099606eda365b8705e a25a3419df0f20514a3aa1b7a07f12d66c53335d
.rsrc 0x22000 0x1294 5120 ef9a289800c672806c45d45495875e7a 8fbddef9ac9b0c2b691555686386521d948bea95
.reloc 0x24000 0xc 512 d5582177dfed631745ab848e750c8cd6 7fc533c1d9ff41a10c7320d2fae98939d0b23fc8
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
KERNEL32.dll
WININET.dll
urlmon.dll
WINMM.dll
mscoree.dll
IP Found
No IP detected
URL(s)
https://bdns.io/r/
https://bdns.bz/r/
https://bdns.co/r/
https://bdns.ws/r/
https://bdns.name/r/
https://bdns.us/r/
http://
https://bdns.at/r/
https://bdns.by/r/
https://api.anti-captcha.com/getTaskResult
https://bdns.im/r/
http://schemas.microsoft.com/windows/2004/02/mit/task
https://api.anti-captcha.com/createTask
https://api.ipify.org/
https://

#infosec #automation

TheSystem Itself @ 2018-11-07 12:00:19