h

Is DLL Packer Anti Debug Anti VM Signed XOR
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 634.50 KB (649728 bytes)
Compile time: 2020-08-28 15:37:36
MD5: be4ffb44533ad150883f5802b51e7773
SHA1: b6dfd92ebd45c3d6821d58939dc87663494a4f27
SHA256: 32fd6a4a895e4507432e6cffd8dc06563745b545c6a5c6ced934bd229aa6246d
Import hash: 8723dfe3046b2e6545d35e1fffd37d94
Sections 5 .text .rdata .data .rsrc .reloc
Directories 3 import resource relocation
Anti Virtual Machine 1 VMCheck.dll
First submission: 2020-11-19 07:15:06
Last submission: 2020-11-19 07:15:06
Filename detected: - h (1)
URL file hosting
hXXp://azraktours.com/wp-admin/h/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 0 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x475eb 292352 1473ce3aa1b281cb7c6fef71a3d18fd3 a68041684fed433e5d102ac18a143581370534b8
.rdata 0x49000 0xe14a 57856 8f0ae1caad9808bbb0dce557d7415d86 5da003d0499c068246c9afde847cdba20e5dc825
.data 0x58000 0x82a0 13312 9954442865c84c06c0aa37b6e408a8a1 a03379974b6cccd74ed68abef96adf6dfb937f52
.rsrc 0x61000 0x3c308 246784 500c14c2137416877b41fcdba09d3f3e 185329947b226768f624f652ffb916f7cec4f061
.reloc 0x9e000 0x95b0 38400 0d26543d9a57b1b4250339ee017622a0 16a9b7bf12e474a2f17f427b447944cf08536a53
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
VC8 -> Microsoft Corporation
File found
FIle type: Object
hhctrl.ocx
FIle type: Library
KERNEL32.dll
mscoree.dll
ekernel32.dll
mfcm90.dll
USER32.dll
SHLWAPI.dll
OLEAUT32.dll
oledlg.dll
MSIMG32.dll
ntdll.dll
comdlg32.dll
ADVAPI32.dll
MSVCRT.dll
MSSIP32.dll
comctl32.dll
SHELL32.dll
OLEACC.dll
ole32.dll
wintrust.dll
UxTheme.dll
GDI32.dll
%s%s.dll
IP Found
1.0.0.1
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-11-19 07:15:07