Is DLL
Packer
Anti Debug
Anti VM
Signed
XOR
|
File details
Download PDF Report
|
| File type: |
PE32 executable (GUI) Intel 80386, for MS Windows |
| File size: |
316.00 KB (323584 bytes) |
| Compile time: |
2020-07-29 09:56:48 |
| MD5: |
ac3f689147fb565631a6567834c783b9 |
| SHA1: |
7b8bf9cd986bc987b0d23fe07baa7ff520d70cae |
| SHA256: |
ee3745c938112b7b49e840787f7e3bf4031c51e1e685c7ad073af64de818f49d |
| Import hash: |
de2f3a78b61d2f88459d7cd2233b67d5 |
| Sections 4 |
.text��� .rdata�� .data��� .rsrc��� |
| Directories 2 |
import resource |
| Anti Virtual Machine 1 |
VMCheck.dll |
| First submission: |
2021-01-09 10:09:06 |
| Last submission: |
2021-01-09 10:09:06 |
| Filename detected: |
- 30hCP55 (1)
|
| URL file hosting |
|---|
hXXp://biglaughs.org/smallpotatoes/30hCP55/ |
| Antivirus Report |
|---|
| Report Date |
Detection Ratio |
Permalink |
Update |
| No report available |
|
| PE Sections 1 suspicious |
|---|
| Name |
VAddress |
VSize |
Size |
MD5 |
SHA1 |
| .text��� |
0x1000 |
0x324b9 |
208896 |
ad12a87ce5af84985a5937c16cb42f9a |
bd7e135725cc7b48c46f66492108e1b358f2c4b2 |
| .rdata�� |
0x34000 |
0xae78 |
45056 |
52af319145e03403c30fb1dbb0604a3a |
2670f207f8f8659a8356926015f10d8b39b09bc5 |
| .data��� |
0x3f000 |
0x6e48 |
12288 |
c23078137e8924b2fd85544807968052 |
bac9f9c0b99954eea0ffbab81124343d51971ad0 |
| .rsrc��� |
0x46000 |
0xc908 |
53248 |
dcffa1beb32fe852ea9ef5fb6cd194a3 |
75b81fca38f96ced689b3559b6eb56a728558171 |
| File found |
| FIle type: Library |
| USER32.dll |
| ADVAPI32.dll |
| SHLWAPI.dll |
| SHELL32.dll |
| KERNEL32.dll |
| OLEAUT32.dll |
| oledlg.dll |
| comdlg32.dll |
| comctl32.dll |
| OLEPRO32.DLL |
| ole32.dll |
| GDI32.dll |
#infosec #automation
TheSystem Itself @ 2021-01-09 10:09:07