ykdtest.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2805
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 2012.50 KB (2060800 bytes)
Compile time: 2020-10-26 08:37:33
MD5: 672d9d09067cf2ccb242114ca27d5daf
SHA1: 6de97d02e6124fafdb07c6458dc364e4406d6f4c
SHA256: c6d075ae1dd9f0c7ebeb834c08a429a81c8419aa026571aa8b1a4645c2e25e19
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-12-03 02:21:12
Last submission: 2020-12-03 02:21:12
Filename detected: - ykdtest.exe (1)
URL file hosting
hXXp://ziliao.yunkaodian.com/ykdjsj/ykdtest.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x1c4204 1852416 bea959404c5f24cc7263d0488865b3b7 2d76e735174b4b4f6e3003eab2d9b1ee5833bcde
.rsrc 0x1c8000 0x328b0 207360 6bfedb7d961f8ca400e75a7aa097639e df9f209330f21f986caf8ae61294f90ccf172db6
.reloc 0x1fc000 0xc 512 1909746c4062001eecee4415248bbb7f bc70e304530327d79b6dda86b50e0943ebfa4d3f
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
KERNEL32.dll
IP Found
5.0.0.7
URL(s)
http://www.w3.org/2001/XMLSchema-instance

#infosec #automation

TheSystem Itself @ 2020-12-03 02:21:13