go.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 46/70 Related 2620
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 701.00 KB (717824 bytes)
Compile time: 2019-09-09 11:35:03
MD5: 8f28626a6ceb715af960707e35f85dbd
SHA1: 66266a073ab850eb17b75bbb05bdf839c890bd46
SHA256: a1a61657a4a0ef9c8cad449373bdaa4bb9d4b478cae579b0385a2faa2378a5cc
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-09-13 10:03:06
Last submission: 2019-09-13 10:03:06
Filename detected: - go.exe (1)
URL file hosting
hXXp://oppofile.duckdns.org/c/go.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-09-12 06:52:53 [46/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x846c4 542720 304ec27de40059171d679e101e5d9910 18ff5b77b86aa056cad10d3f4ec1bdb23cdd40d3
.rsrc 0x88000 0x2a750 174080 ab9442650189f7a9cfca8e260ea4f879 45f39a0f7c945f2a35de5f9f44c0b1a9f0b2e92a
.reloc 0xb4000 0xc 512 80fbda1ea0d1b065d8aa129f88216240 cee57cadf9db384b121c1c4f595a5e20b224a13b
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
ModuleSearches.dll
mscoree.dll
IP Found
1.9.3.4
1.6.9.6
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-09-13 10:03:07