aa.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 11/70
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 552.00 KB (565248 bytes)
Compile time: 2019-10-07 06:58:55
MD5: 59998a2a1c236bbb5bdffe04393b53f8
SHA1: 13e549989289b68a5bcd8fad6ab31dafe1836f7a
SHA256: 63cb6cd04a691f5af02e6a045cdf357e93ee8be5002100b90088b5dd65b24b70
Import hash: e6118210fc56cb388926cdfea13f070a
Sections 4 .text .rdata .data .rsrc
Directories 3 import export resource
First submission: 2019-10-09 10:29:51
Last submission: 2019-10-09 10:29:51
Filename detected: - aa.exe (1)
URL file hosting
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-09 08:05:05 [11/70] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x10714 69632 5501be1b9bacab28440a4f60585bd8ee 6077b809064bccae8d62872e3e77e0cfa34a1abd
.rdata 0x12000 0x39af 16384 0aa139083213b5ade7756adbd3aaff45 612086521ea84703cf7c5b31beb48dbb0bff253f
.data 0x16000 0x12b44 69632 56c19cab08c784be763b3b2322400787 640ad4a5ef85aa589e16606dabf8ce1052c3748c
.rsrc 0x29000 0x62290 405504 0049feb1651fe3b1b544610b4ed5ac0d ac5fc630c92061d760eefd1268c1a6f4e2aa3f67
  • API Alert
  • Anti Debug
  • PE Exports: aa.exe
    • 0x40617b
      Run
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ v7.0
Armadillo v2.xx (CopyMem II)
Microsoft Visual C++ 7.0
File found
FIle type: Text
urlhistory.txt
FIle type: Library
USER32.dll
SHELL32.dll
KERNEL32.dll
WS2_32.DLL
comdlg32.dll
mscoree.dll
comctl32.dll
GDI32.dll
IP Found
No IP detected
URL(s)
http://www.monkeyheadsoftware.com?psc=Y
http://www.monkeyheadsoftware.com/default.asp?app=Y
http://www.somehost.com:8000/stream/1011)