ml.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 62/72 Related 2790
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 37.00 KB (37888 bytes)
Compile time: 2019-08-07 15:36:22
MD5: d218ec97269a4572b32edba2495b9a81
SHA1: d4eece4c8274f83d42e29cc35afa36d56fdf14a6
SHA256: a797806946641cf3a72fb6d03486a4b5498b23bed3fe315458b925ec0223a4f3
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-05 18:21:03
Last submission: 2019-12-05 18:21:03
Filename detected: - ml.exe (1)
URL file hosting
hXXps://cdn.discordapp.com/attachments/603214298642120744/608654745284116481/ml.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-05 13:45:33 [62/72] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x8bd4 35840 40212c8f6f9b3b86dbc48de91a56695e 6e1ff8d1836858a2e1d241a9ba5b995758824383
.rsrc 0xc000 0x240 1024 f7ce2f7b506ce16c06c85a549ef2cd98 8303c332ef155a10b5fb41ef92ce6e4f3f183cfc
.reloc 0xe000 0xc 512 fdf7ae43c201b1d7d13e0eef2dedbdcd d3504b9ca8f20623892208a2032cc53f5638e52e
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Text
/temp.txt
FIle type: Library
USER32.dll
AVICAP32.dll
mscoree.dll
KERNEL32.dll
WINMM.dll
IP Found
82.146.51.150
URL(s)
https://dl.dropbox.com/s/p84aaz28t0hepul/Pass.exe?dl=0

#infosec #automation

TheSystem Itself @ 2019-12-05 18:21:05