oooi_Protected.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 36/70 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 307.50 KB (314880 bytes)
Compile time: 2019-11-08 13:26:44
MD5: 90cc75995f9d0c30a6a556c4d8df48e8
SHA1: 6fbddccd3ead2b551ea3573f0f539144a66cf573
SHA256: 41ceffcf4e06084f684262f34084379d821f4aadcc44e4b79a9a17b9969d7606
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 2 .text .reloc
Directories 2 import relocation
First submission: 2019-11-10 09:57:05
Last submission: 2019-11-10 09:57:05
Filename detected: - oooi_Protected.exe (1)
URL file hosting
hXXps://phltimberwarehouse.co.uk/oooi_Protected.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-09 10:52:19 [36/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x4c804 313856 fecdbd85bc5d112cf5fae75595a06f9e 6dd3958a2db551b5c0571e7b381e9bcbe65c6286
.reloc 0x50000 0xc 512 8e97e94ba5510e90965d94d81c6cad4d a8a286a824357580c770b270cf218fe1d76dcd2c
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
https://dc.services.visualstudio.com/v2/track

#infosec #automation

TheSystem Itself @ 2019-11-10 09:57:06