chime.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 18/71 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 508.50 KB (520704 bytes)
Compile time: 2019-11-12 19:59:54
MD5: 69ab82793c0f05f234ffe7d490ed8d4a
SHA1: a84cad58dc85e1879eb3b5be8e9164fb4e1e871c
SHA256: 38a906c571685b333dc0f4d9fd88e1dea5a4525c036642b940e36aa345bd836f
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
Anti Virtual Machine 1 Bochs & QEmu CPUID Trick
First submission: 2019-11-15 08:15:13
Last submission: 2019-11-15 08:15:13
Filename detected: - chime.exe (1)
URL file hosting
hXXp://fast-yoron-5181.fakefur.jp/sad/chime.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-12 19:27:25 [18/71] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x7db84 515072 815dbbfe35eb018f79fb28615c0cca0c 948f8d550f9bb5d26411f447cdc5a7d1a9479f6d
.rsrc 0x80000 0x1188 4608 a78627c7583a3745e4c36f044a5e946c 9e2be0f36bca623e04987136494eb87d0e52849b
.reloc 0x82000 0xc 512 c39828761584af9991493d886e62ba24 438664850ec36a347dc1ce870f928b80c0b8ce36
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
crc32c32.dll
mscoree.dll
ADVAPI32.dll
USER32.dll
KERNEL32.dll
crc32c64.dll
Crc32C.crc32c32.dll
Crc32C.crc32c64.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-15 08:15:14