license.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 54/70
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386, for MS Windows
File size: 485.00 KB (496640 bytes)
Compile time: 2018-07-05 03:50:44
MD5: f36eb03a20fe643fd4d252785c4cff49
SHA1: d4eb1a300e53381f765d0f1ad30cf515c4417f9d
SHA256: ee21b16de440773fe80af44967a07ff207749ae37a4aa5eb21690f357491cce3
Import hash: 7f139d0678fefdc70c00658e020d0d47
Sections 6 .text .rdata .data .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2020-01-13 15:54:04
Last submission: 2020-01-13 15:57:04
Filename detected: - license.exe (2)
URL file hosting
hXXp://lebedyn.info/wp-content/themes/genesis/license.exeVirusTotal
hXXp://[www].lebedyn.info/wp-content/themes/genesis/license.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2020-01-05 06:16:27 [54/70] VirusTotal
PE Sections 0 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x1000 0x1d9eb 121344 0a6d39b4a5ea685e4059813dcbd7eb58 b2eea693cfdeecb27555cc5aae20b62be0562a4e
.rdata 0x1f000 0xa99a 43520 b9f84ebea6c459ac203153d0f0b4f0a9 5fd7a657c8b0bc3cf82d68df13410d0e921f66d5
.data 0x2a000 0x24021c8 13824 2983090a6c0aadbce7d2806ef419bf1d cab0119c60f2bf95b43dce5cdb2d96c500ce8ba0
.text 0x242d000 0x4984c 297984 14b6376c41946ce236499fddd208c379 da54e9f8c25208a59702d8a1517d09551a749002
.rsrc 0x2477000 0x25d2b18 11264 bdae533202f90a8c66c5d8b801175240 c68dae896a87230c2036833564ad404d647c5f03
.reloc 0x4a4a000 0x1d78 7680 2e217799eb3e3551d0e011959c43d6dd f381b23c8e23b2a1e5d365e547517fc38a633cc6
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C++ 8
File found
FIle type: Library
mscoree.dll
USER32.dll
KERNEL32.dll
ADVAPI32.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2020-01-13 15:54:05