comtools.exe

Is DLL Packer Anti Debug Anti VM Signed XOR
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 1765.87 KB (1808252 bytes)
Compile time: 2020-08-25 04:57:48
MD5: 7b7112618abe2efab05daab9ba511418
SHA1: e5cc95a4ec1a0b69b286bc562ac31e0fbaf53613
SHA256: 19fc2f8428b89072bed333bc84d6df335e0ffadd62d1b80afd913fe937c79b8a
Sections 12 .text .itext .data .bss .idata .didata .edata .tls .rdata .vmp0 .vmp1 .rsrc
Directories 4 import export resource tls
First submission: 2020-10-15 05:15:13
Last submission: 2020-10-15 05:15:13
Filename detected: - comtools.exe (1)
URL file hosting
hXXp://download.xp666.com/xzqswf/app/comtools.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 11 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x230ca0 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.itext 0x232000 0x2074 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.data 0x235000 0x75e0 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.bss 0x23d000 0x5a14 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.idata 0x243000 0x3894 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.didata 0x247000 0x92e 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.edata 0x248000 0x5e 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.tls 0x249000 0x3c 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.rdata 0x24a000 0x5d 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.vmp0 0x24b000 0x2ce616 0 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.vmp1 0x51a000 0x561cc0 5643776 17c2fd3641d11923dfdf63bb973bc453 20ead959f082f1b011f3566e0a2bd079838c293a
.rsrc 0xa7c000 0xc1d0 4608 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
MSVCRT.dll
WININET.dll
USER32.dll
ADVAPI32.dll
GDI32.dll
KERNEL32.dll
WTSAPI32.dll
VERSION.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-10-15 05:15:15