yXC

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 48/70 Related 2
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 404.43 KB (414133 bytes)
Compile time: 2020-01-22 11:48:15
MD5: 86628f3008f4608a4a121c1211adfb57
SHA1: f98760b626546be899bb546b593048a6ce68405f
SHA256: 7f5f675f7a8ca56b67d151e2252f898035130b922f9aa556e67d6ec1439886cb
Import hash: e38d833438252ea576e38d5d5469f738
Sections 4 .text .rdata .data .rsrc
Directories 2 import resource
First submission: 2020-02-14 08:33:05
Last submission: 2020-02-14 08:33:05
Filename detected: - yXC (1)
URL file hosting
hXXp://maafoundry.com/wp-includes/yXC/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-01-30 00:44:41 [48/70] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x26e86 159744 5c491cb45ba59ef3cc878d9eeb4f57b2 619074c510b7fc2d1c15ce632bf5656d224740c6
.rdata 0x28000 0x9d50 40960 7a9136fd0d469a5a307dae046ee2fbbc 6b455024f9b29886b95e46eeb6ce7baf53ef1c06
.data 0x32000 0x751c 16384 68c94319965c4cd0c5c93d3f859e0232 8fb593b168385bc6d6ecca454df9d2332123cb58
.rsrc 0x3a000 0x2e988 192512 a0fd812618c49d1181ec65b76e7abf78 ccfe291ad6a3db95073eb2a3938f1a9f1937f1e0
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ v6.0
Microsoft Visual C++ 5.0
Microsoft Visual C++
File found
FIle type: Library
ntdll.dll
crypt32.dll
KERNEL32.dll
USER32.dll
ADVAPI32.dll
SHELL32.dll
MSIMG32.dll
comdlg32.dll
comctl32.dll
GDI32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-02-14 08:33:07