nMHIrmSG1CQCSlp.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 51/69 Related 2772
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 910.00 KB (931840 bytes)
Compile time: 2019-11-05 03:14:33
MD5: d1994e7fe8932c8242998705200e45a2
SHA1: 89e1b837c50991167a79b70e2612e1d8161288b0
SHA256: 5542c3de89200b6e0bce76445a630c03e65a078b71723771534b35f5ac047dbb
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-11-20 05:42:05
Last submission: 2019-11-20 05:42:05
Filename detected: - nMHIrmSG1CQCSlp.exe (1)
URL file hosting
hXXp://codework.business24crm.io/system1/nMHIrmSG1CQCSlp.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-19 16:02:36 [51/69] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0xe2df4 929280 fa868d5ac15b92a46d49fd5717cfaa98 a3b3465c8887a4d506856d6b03a533f255dc2589
.rsrc 0xe6000 0x600 1536 48a6de546a1344de1204a6555fd84029 967194222a25c5e5038d835ac88e8c8498f2aac2
.reloc 0xe8000 0xc 512 c9c853357c52626586ecdba965bc98d2 bd62f5ffc2fee41929311d20ad0ebc02bcfd1049
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-11-20 05:43:06