g4h337

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 43/70 Related 3
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 672.30 KB (688435 bytes)
Compile time: 2019-11-29 21:33:07
MD5: a4bbb403f56b95f8e1e3152240d7b358
SHA1: f99b64b65cd521f4b6d54ae85e487d7bed976d38
SHA256: b43dc18e1cdcbae16420f922e32b41f159b5bbfdf853ad7fe60c4a90df9bcfea
Import hash: e6485047c948980e4aff0cef8e4ac571
Sections 4 .text .rdata .data .rsrc
Directories 2 import resource
Anti Virtual Machine 1 VMCheck.dll
First submission: 2019-12-03 10:33:03
Last submission: 2019-12-04 04:30:09
Filename detected: - p3508 (1)
- gqoatt898 (1)
- y7763 (1)
- p9p3 (1)
- uqs9371 (1)
- g4h337 (1)
URL file hosting
hXXps://medhatzaki.com/medhatzaki.com/p3508/VirusTotal
hXXps://[www].opporingtones.com/wp-admin/gqoatt898/VirusTotal
hXXp://[www].bienesraicesvictoria.com/wp-includes.stop/y7763/VirusTotal
hXXp://[www].arinlays.com/wp-content/p9p3/VirusTotal
hXXps://sapibook.com/wp-includes/uqs9371/VirusTotal
hXXp://digitgenics.com/upload/g4h337/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-02 17:24:23 [43/70] VirusTotal
PE Sections 0 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x6647d 421888 a95835df2d1cc978ed63b333b8edc0b6 95521f082efe95c170586559ba4dfc74a97a2c86
.rdata 0x68000 0x32ea4 208896 e0a443abb7cc6e80bdcb1c7548e2766e 9b8d57eb41ff7ed91dc073eb2ce24c647c16918b
.data 0x9b000 0x733c 16384 4222c15b7d253db7e17bea3817722f6f 9eef5cbfaf920ec8564ebfb69ad6a646f46840d4
.rsrc 0xa3000 0x8ba8 36864 717e83ee20914bc0745ab82eaef3c5f0 c28b9c20ceb902ffd893d49b4ad711615d8a1130
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
VC8 -> Microsoft Corporation
File found
FIle type: Object
hhctrl.ocx
FIle type: Library
crypt32.dll
USER32.dll
ADVAPI32.dll
SHLWAPI.dll
SHELL32.dll
KERNEL32.dll
OLEAUT32.dll
oledlg.dll
ntdll.dll
comdlg32.dll
comctl32.dll
%s.dll
mfcm80.dll
mscoree.dll
OLEACC.dll
ole32.dll
GDI32.dll
riched20.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-03 10:33:05