99.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 42/70 Related 2476
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 482.50 KB (494080 bytes)
Compile time: 2019-08-19 22:53:20
MD5: c23164dbc82fc4c18fbe709bbfdbe55b
SHA1: 499791e5295ef3b405ebac32d8d973218fef21c7
SHA256: 15355b25de45d3c8cec9f9d5f1ff295c5e71087114210bf34f2bfd3a62f5b72f
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-09-04 05:45:04
Last submission: 2019-09-04 05:45:04
Filename detected: - 99.exe (1)
URL file hosting
hXXp://5.56.133.111/99.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-08-28 21:16:31 [42/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x77e24 491520 64af3f526b67d97c1a08fa5339be0e5a e882fc8eba98a4639b0e12dfebb7e4a9a0b7802b
.rsrc 0x7a000 0x5b8 1536 ea45afe0235495149dd89a87bd4efb92 169b1cc7cb6d69d5bcc6af837cc83aab812cfaef
.reloc 0x7c000 0xc 512 fe4db88909845b2a7c39bacc72c7b269 8bd33fcbe90dcafa849f35507e1a735994d68838
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-09-04 05:45:06