ebuka.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 52/71 Related 2790
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 281.00 KB (287744 bytes)
Compile time: 2019-11-18 12:10:43
MD5: daafe55df5fa070d18fb8c4cc266ed84
SHA1: c51ffa9a6354340e68d8054b7dc9c60b27cf87a6
SHA256: ff6752165b267b944f33200d36378e47a578225df91320283bea89b01d5eb901
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-04 22:36:04
Last submission: 2019-12-04 22:36:04
Filename detected: - ebuka.exe (1)
URL file hosting
hXXp://[www].teorija.rs/vendor/league/ebuka.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-04 16:07:39 [52/71] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x45b44 285696 830e9693ecbac110ba3f8bb0c08b4f78 0d54efed61aa2a1b18131dbd78457790494d6ae1
.rsrc 0x48000 0x310 1024 23b4b80d2a741c427d20be2326943c7b a69ce2d11182893775617a171e368a2ebad5d99f
.reloc 0x4a000 0xc 512 d9cfbeab9518b1042a17b0532f824822 a58261fb827801115b96d6f59bdac413e31334eb
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
psapi.dll
mscoree.dll
vaultcli.dll
IP Found
0.1.2.3
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-04 22:36:05