setup.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 44/71 Related 2710
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 214.06 KB (219200 bytes)
Compile time: 2016-08-23 14:45:53
MD5: ecdd4613dffb8dba4c331e5493366feb
SHA1: 8d0e4fa8c5643970e4abb32aaa80682b6832cca4
SHA256: 05d52043f803481c36298c26f1976d0d0e48311bfc61b04534daf35b40b8c4d1
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 4 import resource relocation security
First submission: 2019-04-15 22:00:04
Last submission: 2019-04-15 22:00:04
Filename detected: - setup.exe (1)
URL file hosting
hXXp://zoom.lk/a/z/setup.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-04-12 20:50:19 [44/71] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x301f4 200704 9e667061c95a12a7faefc75a4f9007d5 b446def01ed9d5edca8b5840b264ba720dc69a64
.rsrc 0x34000 0x632 4096 f4395bad755e887a658a7ae6488c38f8 e5f7861bcf49d19043dd18b5125d63d9e8c66294
.reloc 0x36000 0xc 4096 cf8c8aa6387f5b6a45aad1a8b630bca0 d7605ad7b74145b247640b19165240af0f604bc0
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
MD5: e8fbb742e0d29f1ed5f587b3b769b426
SHA1: 2ef09d75c5fbb1895ae09be9a55504d620f82bd3
Block Size: 6208
Virtual Address: 212992
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
http://ts-crl.ws.symantec.com/tss-ca-g2.crl0(
http://certificates.starfieldtech.com/repository110/
http://crl.thawte.com/ThawteTimestampingCA.crl0
http://certificates.starfieldtech.com/repository0
http://certificates.starfieldtech.com/repository/sfroot.crl0Q
http://certificates.starfieldtech.com/repository/0
http://ocsp.thawte.com0
http://ocsp.starfieldtech.com0L
http://certificates.starfieldtech.com/repository/sf_intermediate.crt0
http://ocsp.starfieldtech.com/0P
http://ts-ocsp.ws.symantec.com07
http://crl.starfieldtech.com/sfs5-16.crl0Y
http://ts-aia.ws.symantec.com/tss-ca-g2.cer0<

#infosec #automation

TheSystem Itself @ 2019-04-15 22:00:05