PDF2EXCEL_1.0.0.1_sogou.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 40
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 4224.29 KB (4325670 bytes)
Compile time: 2012-02-24 20:20:04
MD5: 68cb090b6a63a88ad84b872af4d8766d
SHA1: 2b75bc482251cccb3a12a0f6f13f3f6407f4e321
SHA256: e4528a21e62d357b703fb7ac410fd3dd5b3bbb6cdb7741834f2aeb460adb7aab
Import hash: be41bf7b8cc010b614bd36bbca606973
Sections 6 .text .rdata .data .ndata .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-06-21 10:30:14
Last submission: 2020-06-21 10:30:14
Filename detected: - PDF2EXCEL_1.0.0.1_sogou.exe (1)
URL file hosting
hXXp://softdown.55.la/soft/down/PDF2EXCEL_1.0.0.1_sogou.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x728c 29696 419d4e1be1ac35a5db9c47f553b27cea 81b88fd425125756d41fada07ae1534b10c43c01
.rdata 0x9000 0x2b6e 11264 cca1ca3fbf99570f6de9b43ce767f368 63635b36bd655a189c82d2a8b32e42aa99f985de
.data 0xc000 0x72b9c 512 77f0839f8ebea31040e462523e1c770e 14806c91c6a06fe4fcb02a8a823ae334457cbdb6
.ndata 0x7f000 0xb9000 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.rsrc 0x138000 0x42b20 273408 06a0308ad411e5d489eb14fd8a8a9685 55459bf6f47e7912d266e7500af35122fd45c88a
.reloc 0x17b000 0xfd6 4096 31029450a0e0c8523213c3547e0923c6 e53f1c368a4ee90cd65653f11d480598bce598d1
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Nullsoft PiMP Stub -> SFX
File found
FIle type: Log
install.log
FIle type: Temporary
~nsu.tmp
FIle type: Library
ADVAPI32.dll
SHELL32.dll
USER32.dll
KERNEL32.dll
VERSION.dll
comctl32.dll
psapi.dll
ole32.dll
GDI32.dll
IP Found
1.0.0.1
URL(s)
http://nsis.sf.net/NSIS_Error

#infosec #automation

TheSystem Itself @ 2020-06-21 10:30:16