cryto234.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 47/70 Related 2790
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 787.00 KB (805888 bytes)
Compile time: 2019-01-08 14:37:26
MD5: 52c581020645b7ff01a58543caf4fe79
SHA1: b278717e15720a04659e0ab4865d87a3e5adabad
SHA256: 3f5b1ce055d25dcb410bb064bb6c4dcb2c903de085bcc5158d77acccace14c74
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-02 18:42:05
Last submission: 2019-12-02 18:42:05
Filename detected: - cryto234.exe (1)
URL file hosting
hXXp://pcayahage.com/cryto234.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-02 14:53:10 [47/70] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0xc41a4 803328 7654e8d263b82c320f10bb062aed252f a3457e20c07572c279a169b92149541d8943cebf
.rsrc 0xc8000 0x5fe 1536 fb6b19bd0f1344997180c32dc8c47868 470be68b1dd697568c8af92eec09d82b43cd66c1
.reloc 0xca000 0xc 512 ec940555da0c4a9135e3902800787d58 f30671d59a937f4b160ebb9e6e6192738e1b8e88
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
8.12.15.19
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-02 18:42:07