qiDNPAj

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 504.00 KB (516096 bytes)
Compile time: 2020-08-28 08:21:52
MD5: 5b4aec47af727d2e69224bd55e436298
SHA1: f0ebc5f1b328bb6f50b9d97f59330f434e54191e
SHA256: 37dbfd47a915f44187896f0135b30f99d626d108f3553fec963a8fe0bdf50750
Import hash: a3e94d3daca67f1906b800c1697b8e29
Sections 4 .text .rdata .data .rsrc
Directories 3 import resource debug
First submission: 2020-11-20 00:24:10
Last submission: 2020-11-20 00:24:10
Filename detected: - qiDNPAj (1)
URL file hosting
hXXp://support.dogpack.media/tickets/qiDNPAj/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 0 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x4ec54 323584 b7d794eca113185c60571246ebd79c4a 727ba4587ef1f8ced267ee06a9f209f7e8933f96
.rdata 0x50000 0xde80 57344 bdb49fce5f204ceb9d91469a5a5cc820 02379093960c77d87cedf8e3745d7730151901ad
.data 0x5e000 0x7b18 12288 2107641dc750aebe389b1c4a59ab1ad0 56cf89be3ea8bb4a6920f55e2e3b78f5f09b2041
.rsrc 0x66000 0x1c458 118784 3294084e66d1a2a7ba7c00621f65e9b1 a73c9e88543d4c801ec8eeba9780f6479bf70bfe
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
VC8 -> Microsoft Corporation
File found
FIle type: Object
hhctrl.ocx
FIle type: Library
USER32.dll
ADVAPI32.dll
SHLWAPI.dll
KERNEL32.dll
OLEAUT32.dll
oledlg.dll
MSIMG32.dll
ntdll.dll
comdlg32.dll
%s.dll
MSVCRT.dll
MSSIP32.dll
comctl32.dll
mfcm80.dll
mscoree.dll
OLEACC.dll
GDI32.dll
ole32.dll
wintrust.dll
IP Found
1.0.0.1
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-11-20 00:24:12