resmin.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 11
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows, RAR self-extracting archive
File size: 3852.46 KB (3944916 bytes)
Compile time: 2010-03-15 07:27:50
MD5: 6c4e8c70037941fa38a6bb9dcbb6b740
SHA1: f8f3c0f19e446db02cb154c8d167a0220edd5f0a
SHA256: 59571c577f415315ccf9acf3d28aa98da536ca174c3324db215aa3ba7f486276
Import hash: 9402b48d966c911f0785b076b349b5ef
Sections 5 .text .rdata .data .CRT .rsrc
Directories 4 import export resource debug
First submission: 2020-06-26 09:33:09
Last submission: 2020-06-26 09:33:09
Filename detected: - resmin.exe (1)
URL file hosting
hXXp://shahtoba.faqserv.com/resmin.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x1076e 67584 8e6577c8c479f3e85e7fa573af92977e 3e14b9bd227580cd5f7e77c383f3bf58d953691e
.rdata 0x12000 0x1865 6656 4ec1c384a6c5f398ea7ca4031012f2d6 37dec28bd7ca5d58f4d0491c2958abc7611c321e
.data 0x14000 0xbff4 512 0ebca16960628061dcf3807fd384d9e9 3e49e6e59efbe43e33663390fd2bd9da75d2c041
.CRT 0x20000 0x10 512 a74a099866bd9750c2aa37309234732b ab2b76ba48d85b382e90e0934c83c3621a355b10
.rsrc 0x21000 0xa230 41984 13214bd803b1ebc4aba9e895b9a1cbd7 36f3424cfdd8cb54cb0459221b81f2a5cc81bdae
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Temporary
%s.%d.tmp
winrarsfxmappingfile.tmp
FIle type: XML
zada4a.xml
zada4a_descr.xml
FIle type: Library
ADVAPI32.dll
SHELL32.dll
USER32.dll
KERNEL32.dll
SHLWAPI.dll
comctl32.dll
comdlg32.dll
riched32.dll
riched20.dll
OLEAUT32.dll
ole32.dll
GDI32.dll
IP Found
No IP detected
URL(s)
http://schemas.microsoft.com/SMI/2005/WindowsSettings

#infosec #automation

TheSystem Itself @ 2020-06-26 09:33:11