gqwgr

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 55/73 Related 2
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 404.29 KB (413995 bytes)
Compile time: 2020-01-22 11:46:11
MD5: 506a1f35dd1006941bd31d244cc95688
SHA1: 3f7f18396d9e4c31e08f07490187eac78e6dca13
SHA256: 981ded76f1845a62790716c4f38aa730559eb03a1a7dc385b3eb585662a6725b
Import hash: e38d833438252ea576e38d5d5469f738
Sections 4 .text .rdata .data .rsrc
Directories 2 import resource
First submission: 2020-02-17 08:54:06
Last submission: 2020-02-17 08:54:06
Filename detected: - gqwgr (1)
URL file hosting
hXXp://alexbase.com/plugins/gqwgr/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-02-15 05:45:50 [55/73] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x26e86 159744 5c491cb45ba59ef3cc878d9eeb4f57b2 619074c510b7fc2d1c15ce632bf5656d224740c6
.rdata 0x28000 0x9d50 40960 7a9136fd0d469a5a307dae046ee2fbbc 6b455024f9b29886b95e46eeb6ce7baf53ef1c06
.data 0x32000 0x751c 16384 68c94319965c4cd0c5c93d3f859e0232 8fb593b168385bc6d6ecca454df9d2332123cb58
.rsrc 0x3a000 0x2e588 192512 a3b4993e2894a9442a7a605062b9a31a 700f2a0c873093aa919c6f5835ba65662071597b
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ v6.0
Microsoft Visual C++ 5.0
Microsoft Visual C++
File found
FIle type: Library
ntdll.dll
crypt32.dll
KERNEL32.dll
USER32.dll
ADVAPI32.dll
SHELL32.dll
MSIMG32.dll
comdlg32.dll
comctl32.dll
GDI32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-02-17 08:54:08