vi.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 37/71 Related 2744
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 283.50 KB (290304 bytes)
Compile time: 2019-12-06 05:15:43
MD5: 86527f64b62db523b44f472a3b41e2e8
SHA1: dcb4ff2ba3c222794f10855c6639f40d667edcc1
SHA256: 7c0994f00ce6818a757d727f0e852538650c8dd8a2518104ce90329bfa91bcdf
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-10 11:03:03
Last submission: 2019-12-10 11:03:03
Filename detected: - vi.exe (1)
URL file hosting
hXXp://[www].teorija.rs/storage/framework/vi.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-06 08:17:24 [37/71] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x46204 287744 1eafb363b6bca00d598e73f13cf0bc40 0920ebddf52b553593144accc03484b50eb7adc6
.rsrc 0x4a000 0x548 1536 318eebd6e2fa974da0e1fc57b3de1a95 6c582c69b1b8ca14fddacc9c04f1485e35bf854a
.reloc 0x4c000 0xc 512 88c061fc094c82f828e796d55e2cf01e c9e3ef004b37399b638d55730f17594eee077411
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
psapi.dll
mscoree.dll
vaultcli.dll
IP Found
0.1.2.3
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-10 11:03:04