2c.jpg

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 47/70
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 1448.50 KB (1483264 bytes)
Compile time: 2019-11-20 22:42:12
MD5: ad137e5b2ea970fcf1db83d51715f38c
SHA1: 78b802f6e90a9bfe7d520cb0ae7fbc7a09b2465c
SHA256: 8309b896b0f7b895e84ac2ad491be11870e20bd101bf8e4b0dc1b8adc85b8530
Import hash: d18629867d8db8f9b91aa7df8b73214c
Sections 5 .text .rdata .data .text .rsrc
Directories 4 import resource debug tls
First submission: 2019-12-03 11:42:11
Last submission: 2019-12-07 14:00:11
Filename detected: - 2c.jpg (3)
URL file hosting
hXXp://ocidvbe.com/wp-admin/css/colors/blue/2c.jpgVirusTotal
hXXp://betterthanmostwatersports.com/wp-admin/css/colors/blue/2c.jpgVirusTotal
hXXp://bestnikoncamera.com/wp-includes/ID3/2c.jpgVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-02 16:00:56 [47/70] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x21e4f 139264 5ade21008023df6ebdba90a5f175ae29 de4c7d83f89e6f9dfec784d58948aa5c2a275a75
.rdata 0x23000 0xa740 43008 f08296d8b889a23d079ed6cb7e8db0a4 2ce066a3c69fff798817dbee09e561674243c922
.data 0x2e000 0x3c90 10240 29877f947e004a18d8e84fb49c8569e1 01e6e91779d614afcae76dc07f6ec3f6cfec4a01
.text 0x32000 0x6f6 2048 4d53e0b8b272ad74254c796d1ddbe4b5 ca6247126d3404d594b4f3148734f23a532acaa3
.rsrc 0x33000 0x1e75cc 1287680 523e1a51b0c374603876837dc9ed0698 3e070553af46500eb104dd8a1053eb84068a44f6
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
VC8 -> Microsoft Corporation
File found
FIle type: Library
api-ms-win-core-synch-l1-2-0.dll
USER32.dll
mscoree.dll
KERNEL32.dll
WinSCard.dll
IMM32.dll
Netapi32.dll
dxva2.dll
AVIFIL32.dll
MSACM32.dll
ole32.dll
crypt32.dll
TAPI32.dll
MSIMG32.dll
SHELL32.dll
GDI32.dll
gdiplus.dll
comdlg32.dll
RASAPI32.dll
IP Found
2.6.6.2
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-03 11:42:12