DDTank.exe

Is DLL Packer Anti Debug Anti VM Signed XOR Related 2805
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 76.00 KB (77824 bytes)
Compile time: 2017-01-30 21:43:04
MD5: e8f207d0d91edbd77dd5e3f31c9ce777
SHA1: b7889972ced851dd270340d214b0a7e27af2bff8
SHA256: 877411221e9ed9dd18b17ec397a04f96559a5d2c47a369033bade8a3e00fb504
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 4 import resource debug relocation
First submission: 2021-01-24 09:03:09
Last submission: 2021-01-24 09:12:08
Filename detected: - HackDDTank2017.exe (1)
- DDTank.exe (1)
URL file hosting
hXXp://web.eng.ubu.ac.th/~seminar/research/Research.2557/HackDDTank2017.exeVirusTotal
hXXp://web.eng.ubu.ac.th/~seminar/research/Research.2557/DDTank.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
No report available
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0xbf44 49152 d4e9342d50625186f5a70eb0bffbd1cf f8d01fb00cc8cd2fbc63cc932954bcafca598a43
.rsrc 0xe000 0x6b40 27648 8a3cceb08ecfa9004e165008b52f084d 2103fda6bbac7e1f64c0c9eb2e5f5da62256f133
.reloc 0x16000 0xc 512 b5d9a97c30871f5303bf750b50e57082 6b58fed2d9c5e2a48670e32d9563ca9cdc4fcecb
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
8.8.4.4
8.8.8.8
URL(s)
http://pastebin.com/raw/CwX5d6Ch

#infosec #automation

TheSystem Itself @ 2021-01-24 09:03:11