Invoice%20201910151445_pdf.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 23/68 Related 2627
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 1286.00 KB (1316864 bytes)
Compile time: 2019-08-29 22:57:06
MD5: a2d9686e732d4063cdac6df2e7c76f16
SHA1: 39aa4118fa2ee60160421d7f2b8c45dac4f1735e
SHA256: 853348bdb3e92eb9546dafbf88a2e2231b8dfa953614bbacb2ca3ca7815fb61a
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-10-23 00:57:05
Last submission: 2019-10-23 00:57:05
Filename detected: - Invoice%20201910151445_pdf.exe (1)
URL file hosting
hXXp://104.148.41.37:8080/file/Boh7Zpo5Al8ndpCi/VNF6mjobWMHN18SW/Invoice%20201910151445_pdf.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-15 07:42:35 [23/68] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x13a0e4 1286656 3a642daeb2f6b40c1e0b1fd30e541d35 0508d96bdf7b3aea22dff51061478b4da105dda1
.rsrc 0x13e000 0x7090 29184 67bf7dda208d480bf14746785d5e382a aed77823231f5aa0de1e507a27e21b46023b6256
.reloc 0x146000 0xc 512 7a574f4baaddd6ce3b1a3bc88396388f c00f7605b5379ba4ae27539b84f1213ff726ad1f
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
crypt32.dll
mscoree.dll
ADVAPI32.dll
IP Found
2.5.4.10
2.5.4.3
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-10-23 00:57:05