Is DLL
Packer
Anti Debug
Anti VM
Signed
XOR
Related 1
File details
Download PDF Report
|
File type: |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
File size: |
328.00 KB (335872 bytes) |
Compile time: |
2020-09-16 23:18:43 |
MD5: |
6e6533fa01c0c32dac8c1cab8dc73dbc |
SHA1: |
44c67e51fbeb6b0c8bc26cf7d21223403cac4215 |
SHA256: |
14cf7f5e94dba384b0e31ad0917b6825b9f9791625059cc8b3c0db43931c9cc9 |
Import hash: |
a9dcba22e49d69dd17ae0f6b7ed41420 |
Sections 7 |
.text .rdata .data .crt1 .crt2 .rsrc .reloc |
Directories 4 |
import resource debug relocation |
First submission: |
2021-02-04 16:45:07 |
Last submission: |
2021-02-04 16:45:07 |
Filename detected: |
- jdfggo.rar (1)
|
URL file hosting |
hXXps://timamollo.co.za/sitepro/jdfggo.rar |
Antivirus Report |
Report Date |
Detection Ratio |
Permalink |
Update |
No report available |
|
PE Sections 2 suspicious |
Name |
VAddress |
VSize |
Size |
MD5 |
SHA1 |
.text |
0x1000 |
0x4826 |
20480 |
ce8ea4565518714028411fbdd4b13513 |
191a529a8dad2c8ffac642946b57cb1ad5a41865 |
.rdata |
0x6000 |
0x8a0 |
4096 |
7237bb94c60e1625b1777c8499cae12b |
5eca488aad463fe8a2c0cc852a83b8cffbaa6c27 |
.data |
0x7000 |
0x2cfaf |
184320 |
af588fdc1f917eb78fc3005d585b22fb |
5bcf411e525ad8da7688fa04b8cf0a865e2fd019 |
.crt1 |
0x34000 |
0x6306 |
28672 |
98ed25159fdbf914017ee51c2a8bf410 |
bb1692731f783b04d396c1262942955f28e41302 |
.crt2 |
0x3b000 |
0xe604 |
61440 |
54a5e9523dbb2beb0fb23883446f32fd |
909d0996126dac494b940997ab0e5c02ab2986e3 |
.rsrc |
0x4a000 |
0x6fd6 |
28672 |
5792b8bf61dd6ca972d0bebeee069c22 |
20bc37dba5e7187ae6f6bddc1fbadd2bc34507d7 |
.reloc |
0x51000 |
0xe4 |
4096 |
70242dd137dd59c100efc45d2bd4f6ba |
477ec069257b8108998f4ab6a0c97042f162e1bf |
File found |
FIle type: Library |
npjpi10602.dll |
ADVAPI32.dll |
crypt32.dll |
OLEAUT32.dll |
USER32.dll |
KERNEL32.dll |
#infosec #automation
TheSystem Itself @ 2021-02-04 16:45:08