MalScore
42/100

gcmgr.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 37
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 1568.75 KB (1606398 bytes)
Compile time: 2019-06-07 17:52:42
MD5: be899ec7dcad377fba70687d9550d6f9
SHA1: 84b09517f5cb9e7e61b22a205e403562bc99a127
SHA256: 67eed2a5aca8fc271085604f37abbf5c86c99c01c146712334229a44b6478fa8
Import hash: 2eabe9054cad5152567f0699947a2c5b
Sections 7 .rsrc .idata gjyjoifi ddwmjska .taggant
Directories 3 import resource relocation
First submission: 2019-06-13 01:39:13
Last submission: 2019-06-13 01:39:13
Filename detected: - gcmgr.exe (1)
URL file hosting
hXXp://static.ilclock.com/gcld/updates/gcmgr.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 4 suspicious
Name VAddress VSize Size MD5 SHA1
0x2000 0x2000 2560 1cf195a5b918ad43a6e9842ba4d016e9 ace0a5b8ccb3c3ad48d827e67827914f77532605
.rsrc 0x4000 0x5ac 1536 74d7a8b33d40803c615eafaa963b1226 6b10d8eb121124ba409da2eb34a920cb7a3021d2
.idata 0x6000 0x2000 512 d6be32f18aab6af50cf13c795e774522 a98421ea5d49d304cb67a4868b4758cbce2243d8
0x8000 0x1780000 512 a20f99884a7b5af53a5860e1c1dbaedb e0944c0945c77ede67fe7fff7e157e8a3b12d63a
gjyjoifi 0x1788000 0xf0c000 15772672 c62e02b5e1d309df976bcf3e255622f5 b151db3bf469632c98ca46776ba2dad85f83f540
ddwmjska 0x2694000 0x2000 1024 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
.taggant 0x2696000 0x4000 8704 d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
mscoree.dll
KERNEL32.dll
IP Found
No IP detected
URL(s)
No URL found
Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven05_64 Seven05_64 VirtualBox 2019-06-13 01:32:36 2019-06-13 01:33:06 30

2 Behaviors detected by system signatures

Behavior analysis details
Machine name Machine label Machine manager Started Ended Duration
Seven05_64 Seven05_64 VirtualBox 2019-06-13 01:32:36 2019-06-13 01:33:06 30

0 Summary items with data

Files

Nothing to display

Read Files

Nothing to display

Write Files

Nothing to display

Delete Files

Nothing to display

Keys

Nothing to display

Read Keys

Nothing to display

Write Keys

Nothing to display

Delete Keys

Nothing to display

Mutexes

Resolved APIs

Nothing to display

Execute Commands

Nothing to display

Started Services

Nothing to display

Created Services

Nothing to display

#infosec #automation

TheSystem Itself @ 2019-06-13 01:39:15