ar.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 31/65 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 306.50 KB (313856 bytes)
Compile time: 2019-11-11 00:15:06
MD5: ab47858f470352378775664f7fe99ebe
SHA1: 38676a3f8d7473ba9019c30961d06fd51d0e022d
SHA256: 19a82dedbef2738e082bf052a81f1af19610f2478b7ee9502749ad185dfee215
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-11-12 00:15:04
Last submission: 2019-11-12 00:15:04
Filename detected: - ar.exe (1)
URL file hosting
hXXp://fargroup.ir/images/files/ar.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-11 07:02:56 [31/65] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x4be94 311296 aabf1821931caed9eef6cd91c0a0261c 389c221057340bc145103ad191994f9af6063afb
.rsrc 0x4e000 0x548 1536 e96571947225c0c916da25e49409595e 928b2fcd94377bcb6e901f846ddfdac37e2669cb
.reloc 0x50000 0xc 512 513e0634d50d537fc81f0f3674dd9eb5 60cd484755ef669100e4bc3bd7805583dd03a4eb
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
psapi.dll
mscoree.dll
vaultcli.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-12 00:15:05