601o97lmde-she8j1-4176106

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 53/72 Related 2
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 260.43 KB (266684 bytes)
Compile time: 2020-01-22 18:39:26
MD5: d47a6382d39a62f26745a040d77a436b
SHA1: f78c7482e2d1aeb2e241b9442524937eb2605a3c
SHA256: b6f2283951ad3704839d81f4712bdce0e3bc8ee6d2e93c3dab9d8d0976f6622b
Import hash: 4ddbf6d7dca6fa2386714a7569cf0855
Sections 4 .text .rdata .data .rsrc
Directories 2 import resource
First submission: 2020-02-15 14:57:09
Last submission: 2020-02-15 14:57:09
Filename detected: - 601o97lmde-she8j1-4176106 (1)
URL file hosting
hXXp://[www].demo.thedryerventpro.com/wp-admin/601o97lmde-she8j1-4176106/VirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-01-29 08:40:04 [53/72] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x1f4bb 131072 fff4e6148e0337a561f4985565b43687 e28a8962366895edc2b0d162967fbd5c665d2068
.rdata 0x21000 0x7d8e 32768 f9824eb5fe98c71d708e596db902e465 a1f8169e1b4a34cedeb0cc548300dc3b449cb43e
.data 0x29000 0x5254 8192 ae8196c9b8de52a4f8892ae7cae09287 d8cc22a14e72938db3775e373398e7b009c3d32d
.rsrc 0x2f000 0x15148 90112 c018a2bd6727fc55fd43cb3d85edf08e 5d696b7d0ff0c2dc3dbe757ebd68e4c89f253437
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ v7.0
Armadillo v2.xx (CopyMem II)
Microsoft Visual C++ 7.0
File found
FIle type: Object
hhctrl.ocx
FIle type: Text
testfile.txt
FIle type: Library
crypt32.dll
ntdll.dll
KERNEL32.dll
USER32.dll
ADVAPI32.dll
SHELL32.dll
OLEAUT32.dll
comdlg32.dll
%s.dll
comctl32.dll
SHLWAPI.dll
mscoree.dll
OLEACC.dll
ole32.dll
GDI32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-02-15 14:57:11