ugoloki.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2779
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 523.00 KB (535552 bytes)
Compile time: 2020-07-14 03:43:47
MD5: e4c32daf08e6402c918e9140ff3258b0
SHA1: 342cc6f2ce53ae721a702b0915b95f10d9c31e89
SHA256: 91819321629863716f2a1378e8f402c34d04ca36d0ed40b24d9bebc0ac1d1383
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .reloc .rsrc
Directories 3 import resource relocation
First submission: 2020-07-26 00:48:06
Last submission: 2020-07-26 00:48:06
Filename detected: - ugoloki.exe (1)
URL file hosting
hXXp://abass.ir/ugobuild/ugoloki.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x82174 532992 a0fe424aaf4841d3215af68de8be244d 3afc5b559180b034715d84d855ed62a6df9d4bd1
.reloc 0x86000 0xc 512 c37c7aeb33f7c354b8206d030606ba50 a1a5232f55049fa016bb0099bc9c84b75303edc5
.rsrc 0x88000 0x5f0 1536 99254a2ef8e93edbdaf4042cd55e764b 92ffa12cb5ca26b36c67b9b7e79886635ae98eba
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
KERNEL32.dll
USER32.dll
mscoree.dll
IP Found
3.0.143.3
3.0.146.8
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-07-26 00:48:08