MalScore
100/100

crypted44.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 15/68 Related 2683
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 416.50 KB (426496 bytes)
Compile time: 1999-07-19 03:15:00
MD5: b6378496a96429130a79be27cea99170
SHA1: 4a9a5f36b28eac91b8c3cc70dce008e8b8a616e1
SHA256: a9f386bacfafc9ae244522dbba8c4231b7ca507f14249a498d7323d3dffd5b53
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 5 " /*^ .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2018-10-19 15:30:11
Last submission: 2018-10-19 15:30:11
Filename detected: - crypted44.exe (1)
URL file hosting
hXXp://citbagroup.com/1/crypted44.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2018-10-18 17:53:35 [15/68] VirusTotal
PE Sections 4 suspicious
Name VAddress VSize Size MD5 SHA1
" /*^ 0x2000 0xbb04 48128 4491d1a9801f8106f988134582444443 59f7278b2f2b93194074661892533f8814e867be
.text 0xe000 0x5b460 374272 30281d655578d25dd4c8b208d016c7c3 cf41c945fe01264e6a45c99b8202596900567eed
.rsrc 0x6a000 0x630 2048 5f20f49ea89eda04399a7d3fef150f9a 04cd7c1629085eceba7218337c2a35f99e2cf489
.reloc 0x6c000 0xc 512 03b4a7742d43ef56ec303d17318ca02e a3fca0488da2e01989a4caeb6b7068aa09cffced
0x6e000 0x10 512 60e273dbf730c7829401981e0cc3aa34 416efb9a75c06d08cf76bb7edf9f96ae26ccd7d1
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
mscoree.dll
IP Found
6.9.32.2
URL(s)
No URL found
Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven04b_64 Seven04b_64 VirtualBox 2018-10-19 15:22:46 2018-10-19 15:25:43 177

2 Behaviors detected by system signatures

Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven04b_64 Seven04b_64 VirtualBox 2018-10-19 15:22:46 2018-10-19 15:25:43 177

0 Summary items with data

Files

Nothing to display

Read Files

Nothing to display

Write Files

Nothing to display

Delete Files

Nothing to display

Keys

Nothing to display

Read Keys

Nothing to display

Write Keys

Nothing to display

Delete Keys

Nothing to display

Mutexes

Resolved APIs

Nothing to display

Execute Commands

Nothing to display

Started Services

Nothing to display

Created Services

Nothing to display

#infosec #automation

TheSystem Itself @ 2018-10-19 15:30:27