3kSDCIbEh

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 8/71 Related 2
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
File size: 307.05 KB (314422 bytes)
Compile time: 2019-11-08 15:35:32
MD5: 650bf1cc98504f2258a4f94a9a4d8d2d
SHA1: 19f33490b67792fdc87a542e444ff1b50918c4ca
SHA256: 1fc41878ef90140da2ce20191566bd8086cb37051bf7172868afef238636f452
Import hash: 7891763ea48a5b2715c48c0957f6d78f
Sections 11 .text .data .rdata .eh_fram .bss .edata .idata .CRT .tls .rsrc .reloc
Directories 5 import export resource tls relocation
First submission: 2019-11-09 03:06:07
Last submission: 2019-11-09 03:15:04
Filename detected: - p0kk5t (1)
- 3kSDCIbEh (1)
URL file hosting
hXXps://about.technode.com/1v9v1/p0kk5t/VirusTotal
hXXp://menxhiqi.com/manager/3kSDCIbEh/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-08 16:18:12 [8/71] VirusTotal
PE Sections 4 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x23a7c 146432 0120ab8cab3923ce693535e54e43469e 3c4253cb250662117166665e167078017bd74e7d
.data 0x25000 0x12418 75264 5340e00f632f67c990e63fcfc418cd30 60a6d483fd9243ff399bbb1f0209e91b482cfbc4
.rdata 0x38000 0x5080 20992 2b0dc9fafb7ab687a7aeea729fba670c 147f142602d1ea7fe7dbcb76f9de190c129295e2
.eh_fram 0x3e000 0xbdb0 48640 599141c96a312589e451fa7f09d78fce 85266c32e074e52fae03653fb04da9f080aabaf6
.bss 0x4a000 0x930 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.edata 0x4b000 0x4f 512 60381862250acd8d5f42395351ada3c1 f4919d8c5236c77b8f7b2be54a022f6407a62f58
.idata 0x4c000 0xc0c 3584 6295a1a404ca6b113e5c3495daea3ad5 3c17f4cb9f1451a8411a6aad3bcc5512247921f1
.CRT 0x4d000 0x18 512 6f239f4aa7f2497d45b69c28109d6a17 2dafcdca7d4d926369f750c96e92c451b69486e4
.tls 0x4e000 0x20 512 e6277cbd28322af6418ff5b29d94de41 7482cffa5243486d78fa8cba9a65a90e4aa7cf33
.rsrc 0x4f000 0x25f4 9728 91206701a4ae5f9fbba9fcf45a81aff0 dcc8cd48b9a52048b38088a2ec54ff186fdf9f68
.reloc 0x52000 0x1ad8 7168 2ab7322409e92bb586c1a2deef880543 438787981fcc190f3dc1d2f583008de23859a110
  • API Alert
  • Anti Debug
  • PE Exports: 3kSDCIbEh
    • 0x402e31
      fgcbdfczaszxaefftyyh
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
libgcc_s_dw2-1.dll
ddraw.dll
WINMM.dll
USER32.dll
MSVCRT.dll
libgcj-13.dll
ADVAPI32.dll
GDI32.dll
KERNEL32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-09 03:06:08