bit32.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 50/71 Related 2744
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 910.50 KB (932352 bytes)
Compile time: 2019-11-15 22:48:47
MD5: df9c59edbf0193a7dd056169d6430583
SHA1: 75614bd0532c39f436f58f7cd438b203109b2c70
SHA256: 364e724220241d26ecba8d715464c7a911adac345442a0ea770f72408e2b6536
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-11-16 09:30:05
Last submission: 2019-11-16 09:30:05
Filename detected: - bit32.exe (1)
URL file hosting
hXXp://nahrungsmittel.ml/bit32.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-16 07:44:48 [50/71] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0xe2414 927232 1db904516a39053c9493d4dc4b4953c4 266fa90ee76d909affc5e876d9f45b6588564821
.rsrc 0xe6000 0x1000 4096 39cb30776af79c6dd7488cdc698d82ea 5ea64a044b3248114d9da37a8029dd2f7d352e4a
.reloc 0xe8000 0xc 512 086115dd08698ce1b4f4bf34e690dfcc 875eb956a8dc7c5a1d05adb402a6078ba0208f11
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Compressed
costura.microsoft.win32.taskscheduler.dll.zip
costura.orcus.plugins.dll.zip
costura.orcus.shared.utilities.dll.zip
costura.orcus.shared.dll.zip
costura.starksoft.aspen.dll.zip
costura.orcus.staticcommands.dll.zip
ICSharpCode.SharpZipLib.Zip
FIle type: Data
err_{0}.dat
klg_{0}.dat
FIle type: XML
FileZilla\recentservers.xml
.purple\accounts.xml
schedulerInfo.xml
System.Xml
FIle type: Database
key3.db
FIle type: Library
System.Core.dll
System.Windows.Forms.dll
^(?<name>(.+?))(_(?<number>([0-9]{1,2})))?\.dll
System.Xml.Linq.dll
imageres.dll
(_(?<number>([0-9]{1,2})))?\.dll
System.Xml.dll
System.dll
*.dll
Srclient.dll
SHLWAPI.dll
USER32.dll
ntdll.dll
MSVCRT.dll
mscoree.dll
ADVAPI32.dll
wintrust.dll
SETUPAPI.dll
KERNEL32.dll
GDI32.dll
WINMM.dll
IPHLPAPI.DLL
SHELL32.dll
IP Found
127.0.0.1
URL(s)
http://schemas.microsoft.com/SMI/2005/WindowsSettings
https://api.ipify.org/

#infosec #automation

TheSystem Itself @ 2019-11-16 09:31:07