1Z9F084A39.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 56/73 Related 2777
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 309.50 KB (316928 bytes)
Compile time: 2020-02-11 13:55:38
MD5: 7f033b0c44552e27c0387fd4e76b162c
SHA1: 585a26175a087e2d0965fd33628788f7a27e30fd
SHA256: ed6b3aea9121f82c45851ba49392cfc73e1e6409d9963825402d131ebcb1a16d
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .reloc .rsrc
Directories 3 import resource relocation
First submission: 2020-03-29 19:42:05
Last submission: 2020-03-29 19:42:05
Filename detected: - 1Z9F084A39.exe (1)
URL file hosting
hXXps://fs03n4.sendspace.com/dlpro/bf25e8b4179f3203950a527994571bb7/5e42c2b8/tyr9zh/1Z9F084A39.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-03-10 00:12:38 [56/73] VirusTotal
PE Sections 3 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x49050 299520 f367ff4c3a45a998fad5d28c80c93fed 67120d5c9493ec227da6bc801887c894858c7ee9
.reloc 0x4c000 0xc 512 dc7700ca4e77aaa86aab8aa665c3f34f b4593fcecd6a4a1f29af3005cb13da0984b0ad19
.rsrc 0x4e000 0x3ecc 16384 eba5728581ccd00ddfc326cee7f82939 53fc730207f08ce33ae41a6c6d4c90c5ff437967
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
KERNEL32.dll
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-03-29 19:42:06