4.exe

Is DLL Packer Anti Debug Anti VM Signed XOR
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 194.50 KB (199168 bytes)
Compile time: 2017-11-03 08:10:12
MD5: 81c7d6315216084c0f26590c297a4717
SHA1: baefd4b3ef79fb96ff57ebc1d8df7f25d835bdc8
SHA256: bba3fa36573554640ba51963873cb7530d21cb5ecd0b865b1c4d8a1091899571
Import hash: 13a2663cc094330e41455893bcb3bee0
Sections 5 .text .rdata .data .rsrc .reloc
Directories 4 import export resource relocation
First submission: 2020-09-07 03:30:05
Last submission: 2020-09-07 03:30:05
Filename detected: - 4.exe (1)
URL file hosting
hXXp://alacatibisiklet.com/wp-content/plugins/litespeed-cache/4.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 0 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0xf9b8 64000 0286b99e161821ae95d6f58ae3b28210 7a9d696d26ed0fcc402305b51e268aa9a0597970
.rdata 0x11000 0x6cd2 28160 36984c673665b41e43bba0fddc11b9e1 95972227cee09447506b574b97b66726a10d58a9
.data 0x18000 0x15400 75776 d7bc96475fe4cb9bffc672c6a1fc894a 8350f1126885d6d038c469a22c927ff5b72a48fa
.rsrc 0x2e000 0x61c8 25088 2a3b4aaf3d28a997e8712de4749e5973 d0d68763ec14c174912530fa15a93a3be250d6a6
.reloc 0x35000 0x1260 5120 b8435d063569307f9521abe5c6bf966d 4f0f37e60c2fa3fdc32ee0cb5eb03a2b69e78971
  • API Alert
  • Anti Debug
  • PE Exports: 4.exe
    • 0x41071e
      MyFunc1
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
File found
FIle type: Library
mscoree.dll
USER32.dll
KERNEL32.dll
ADVAPI32.dll
SHELL32.dll
WINHTTP.dll
GDI32.dll
IP Found
1.0.0.1
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-09-07 03:30:06