svchosts.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2368
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 95.00 KB (97280 bytes)
Compile time: 2019-03-08 21:39:09
MD5: d09e78a05bc979545aa0072c2e0228c4
SHA1: 291eb37b7410925e83c541c656a94ceedf8169fa
SHA256: 36ca0728c193e39279d725f284caecd23f719973070d1a150a69f317fa43fe9e
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 5 5DZ,H-z_ .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-04-12 19:44:46
Last submission: 2019-04-12 19:46:32
Filename detected: - svchosts.exe (2)
URL file hosting
hXXp://x2vn.com/attack/svchosts.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 3 suspicious
Name VAddress VSize Size MD5 SHA1
5DZ,H-z_ 0x2000 0xa4e8 42496 9d976ed4d9dcf124e9871ae111c94a36 0949daa5803fcb7f86e8e033648c719928966252
.text 0xe000 0xc4f8 50688 8e2f8de3215cbe883104b520ff3b6981 e8423858d17f8c2bb3c174223328821f5ff1c264
.rsrc 0x1c000 0x6d0 2048 f73cc687a247d59d82968117aadddcd0 b9c32f0319df899083b39e0e6c2942b37c729155
.reloc 0x1e000 0xc 512 5ff57de272f4a0446855d3bb5365e6b5 2b4629824bfc56d3e33b32508811142fe03b67d0
0x20000 0x10 512 1921a0085a8cccdede85295181c11058 2a4801dffd7c4d5357194cfd08327611d173e2bb
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
No packers found for this file
File found
FIle type: Library
USER32.dll
mscoree.dll
KERNEL32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-04-12 19:44:47