zzzz.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 62/73 Related 2772
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 226.50 KB (231936 bytes)
Compile time: 2015-04-22 19:00:00
MD5: 705280473743f75ba4bbacccae92d77c
SHA1: 49241c71223735fc22c4e0db0e33fb19b42d9a2e
SHA256: 7cd916530a031a562d2729bdfbbd60f509eb19fde00161b0c51c32451e6b3dd1
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-03-29 15:39:05
Last submission: 2020-03-29 15:39:05
Filename detected: - zzzz.exe (1)
URL file hosting
hXXp://mp3tube.hi2.ro/fisiere/zzzz.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-03-28 16:13:53 [62/73] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x34604 215040 fe0f96613417733e59429c4155dbe391 cfd7f0dabd6b60f68c212a11a0ad1dbcbfb858a4
.rsrc 0x38000 0x3c34 15872 27c1f500195d0dfffb3470964ce0976f 9ca051b4e39b1f3c2c35f113a5274fd9aabfbbb7
.reloc 0x3c000 0xc 512 b89cee960f7f7ae664b19002b7e62a0e 38a69bceec543427dd87c4b3f65a989e3148fd89
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
crypt32.dll
mscoree.dll
KERNEL32.dll
ADVAPI32.dll
IP Found
1.2.2.2
URL(s)
http://www.w3.org/2001/XMLSchema-instance

#infosec #automation

TheSystem Itself @ 2020-03-29 15:39:06