svchosts.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 48/70 Related 2600
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 203.50 KB (208384 bytes)
Compile time: 2019-07-03 13:07:09
MD5: 5deccd54226701331200fcba5b7eb507
SHA1: 91df3cf9962f3f6eeac8c988b1f4cd1492f860da
SHA256: 81beeac71f616cab77da9645a2c4f45c55b17ad5892d80052fbe0a14b53f61db
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-10-12 13:21:06
Last submission: 2019-10-12 13:21:06
Filename detected: - svchosts.exe (1)
URL file hosting
hXXp://attack.s2lol.com/free/svchosts.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-11 16:01:23 [48/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x320c4 205312 39e627a7c708209f801995b03edcacc2 dfb02c40c8d6288c1b438db52e036766f479fc1e
.rsrc 0x36000 0x6d8 2048 e2f8fe472c4667797253b0b4ab41c11c 34be6e8b6d163376158a3c67fc5c6c4245fcf127
.reloc 0x38000 0xc 512 fd12f605236e93f5bba9aff3376d6748 fdb45650f15615149bd2bf4b581d45985b339df9
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
KERNEL32.dll
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-10-12 13:21:06