GqqAnDne

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 42/71 Related 3
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 672.14 KB (688274 bytes)
Compile time: 2019-11-29 21:33:54
MD5: 8760c4dc1744e93eb02e5a98b31b3edd
SHA1: 06c5e9e696c49bc91c2fd12489f18b8b6cc1b0c9
SHA256: db773a30597c86a869a8cf3d75c2c86ba22e6dd48441811eedb52d231b6bb249
Import hash: e6485047c948980e4aff0cef8e4ac571
Sections 4 .text .rdata .data .rsrc
Directories 2 import resource
Anti Virtual Machine 1 VMCheck.dll
First submission: 2019-12-03 04:15:04
Last submission: 2019-12-04 12:21:04
Filename detected: - uabnwKiH (1)
- XcWEIG (1)
- 5gg0ymz16-fvzur25l-53028 (1)
- GqqAnDne (1)
URL file hosting
hXXps://womenindeed.org/license/uabnwKiH/VirusTotal
hXXps://titrshop.ir/wp-includes/XcWEIG/VirusTotal
hXXps://[www].runrunjz.com/wp-includes/5gg0ymz16-fvzur25l-53028/VirusTotal
hXXps://buddysteve.de/stats/GqqAnDne/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-02 15:04:32 [42/71] VirusTotal
PE Sections 0 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x6647d 421888 a95835df2d1cc978ed63b333b8edc0b6 95521f082efe95c170586559ba4dfc74a97a2c86
.rdata 0x68000 0x32ea4 208896 b0cefcfe72b5891a19ec37f181e2767d 15523035ae5883c1c32f6e5d75c81037236d7d8a
.data 0x9b000 0x733c 16384 4222c15b7d253db7e17bea3817722f6f 9eef5cbfaf920ec8564ebfb69ad6a646f46840d4
.rsrc 0xa3000 0x8ba8 36864 717e83ee20914bc0745ab82eaef3c5f0 c28b9c20ceb902ffd893d49b4ad711615d8a1130
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
VC8 -> Microsoft Corporation
File found
FIle type: Object
hhctrl.ocx
FIle type: Library
crypt32.dll
USER32.dll
ADVAPI32.dll
SHLWAPI.dll
SHELL32.dll
KERNEL32.dll
OLEAUT32.dll
oledlg.dll
ntdll.dll
comdlg32.dll
comctl32.dll
%s.dll
mfcm80.dll
mscoree.dll
OLEACC.dll
ole32.dll
GDI32.dll
riched20.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-03 04:15:05