Is DLL
Packer
Anti Debug
Anti VM
Signed
XOR
|
File details
Download PDF Report
|
| File type: |
PE32 executable (GUI) Intel 80386, for MS Windows |
| File size: |
144.00 KB (147454 bytes) |
| Compile time: |
2005-11-29 16:07:23 |
| MD5: |
d2379d0d216cfa083f634057ef0338c8 |
| SHA1: |
ec084596f3b34061a49f0c53fea14f79824ebe6e |
| SHA256: |
777590d7cdac2a11a1f547b1cf3ac37b49c76b66b3f8fb8bfc146e7433afbb31 |
| Sections 4 |
.text��� .rdata�� .data��� .rsrc��� |
| Directories 2 |
import resource |
| Anti Virtual Machine 1 |
VMCheck.dll |
| First submission: |
2021-03-09 17:30:14 |
| Last submission: |
2021-03-09 17:30:14 |
| Filename detected: |
- control.exe (1)
|
| URL file hosting |
|---|
hXXp://ykt.17110.com/controls/control.exe |
| Antivirus Report |
|---|
| Report Date |
Detection Ratio |
Permalink |
Update |
| No report available |
|
| PE Sections 0 suspicious |
|---|
| Name |
VAddress |
VSize |
Size |
MD5 |
SHA1 |
| .text��� |
0x1000 |
0x53f7e |
344064 |
4314d9c98b7e3e6e17ed281508d56c29 |
87ba81cf766554b847e32518838f20080719ff8d |
| .rdata�� |
0x55000 |
0x1375a |
81920 |
d41d8cd98f00b204e9800998ecf8427e |
da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| .data��� |
0x69000 |
0x111b4 |
12288 |
d41d8cd98f00b204e9800998ecf8427e |
da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| .rsrc��� |
0x7b000 |
0x4668 |
20480 |
d41d8cd98f00b204e9800998ecf8427e |
da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| File found |
| No file name detected |
| Behavior analysis details |
| Machine name |
Machine label |
Machine manager |
Started |
Ended |
Duration |
| Seven02b_64 |
Seven02b_64 |
VirtualBox |
2021-03-09 17:14:11 |
2021-03-09 17:14:34 |
23 |
0 Summary items with data
Read Files
Nothing to display
Write Files
Nothing to display
Delete Files
Nothing to display
Read Keys
Nothing to display
Write Keys
Nothing to display
Delete Keys
Nothing to display
Mutexes
Resolved APIs
Nothing to display
Execute Commands
Nothing to display
Started Services
Nothing to display
Created Services
Nothing to display
#infosec #automation
TheSystem Itself @ 2021-03-09 17:30:15