pov.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 54/72 Related 2772
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 281.50 KB (288256 bytes)
Compile time: 2019-11-27 09:16:24
MD5: 6d41cc844cf15908d38212fcd0d27904
SHA1: 430584e1740ac3e225f580b6a56772725191984e
SHA256: 597784234106601e18b0605f7339420a94e711fc6af3f40f7a8159f303756f74
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-04 22:06:04
Last submission: 2019-12-04 22:06:04
Filename detected: - pov.exe (1)
URL file hosting
hXXp://[www].teorija.rs/vendor/league/pov.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-04 15:45:54 [54/72] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x45a24 285696 6808530b12dcda87768130a59d3a8949 e4b418ec7d8f8d067d2d4430f28c54841ef581e3
.rsrc 0x48000 0x540 1536 befe7af5481b258ad4bbd9ae66540f9f 0d36af5aadefdb3f84387af0b1c19cd046f72c79
.reloc 0x4a000 0xc 512 8b443c1c5c3054b317e827f6879d94da b6c5b8c0b77f212e52cdf0de9744c76c520d8ed3
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
psapi.dll
vaultcli.dll
mscoree.dll
IP Found
0.1.2.3
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-04 22:06:05