jiz.jpg

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 48/70 Related 2627
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 122.50 KB (125440 bytes)
Compile time: 2019-10-09 23:27:11
MD5: 8d536592acc6050087ee8b70f7e79c64
SHA1: f5c9353a4bbdbc4954d6a7f9ac7b3e718357d7a7
SHA256: 76e289ec5b947d7d79543c389d2a2bea067cc19d77cbfa4add81c988c1835a4e
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 2 .text .reloc
Directories 2 import relocation
First submission: 2019-10-21 03:21:04
Last submission: 2019-10-21 03:42:04
Filename detected: - jiz.jpg (2)
URL file hosting
hXXp://[www].gessuae.ae/wp-includes/fonts/jiz.jpgVirusTotal
hXXp://gessuae.ae/wp-includes/fonts/jiz.jpgVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-18 07:17:23 [48/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x1e414 124416 7fbe315275a11fc7670563e9e1219be0 8f0d4d584d267d69b90d2eac6576e83695403be7
.reloc 0x22000 0xc 512 3c77e596aedd58a1be53f6da6b9fcf59 0193c3cf33de2330e6dbe4340bdb81db3e0075de
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-10-21 03:21:04