oo.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 47/70 Related 2628
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 657.00 KB (672768 bytes)
Compile time: 2019-10-14 12:55:30
MD5: 8b9e45d5d11a2131b1d216192c0eb925
SHA1: 82cd4018344fd1d434aea3dd3295127010961f16
SHA256: 1e526380c7a79b829858e5047f3395236daee7bacabdc74ef5d2ea43d352722d
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-10-21 15:33:07
Last submission: 2019-10-21 15:33:07
Filename detected: - oo.exe (1)
URL file hosting
hXXp://gessuae.ae/wp-includes/images/smilies/oo.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-17 16:01:42 [47/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0xa3794 669696 9043c6fd032b5f20b5927762cb827a82 1875ae5ff7fd2be8417c526cbbd408a81e2bd35b
.rsrc 0xa6000 0x800 2048 c24ecf1dfc5f1e72a42fcf71f8b2b540 9eec03d1f7eb5c4f40b3c727d5d882213d6bffac
.reloc 0xa8000 0xc 512 bd6c0b2f2da333c44b7485030d40805d f0ace9686e7ee45adc64a595222207c8537d4b27
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
1.8.3.8
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-10-21 15:33:07