chib.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 52/72 Related 2779
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 281.00 KB (287744 bytes)
Compile time: 2019-12-05 22:56:17
MD5: fcb56a7c323d8a08771291b98c23e3bb
SHA1: 793eb8cb5cafad9ad8bb29dcbbbd6c8bd705462d
SHA256: 16bec326c213fda413e46ef20254a3cab537009b361e33525e5aab236fae34d2
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-10 10:57:03
Last submission: 2019-12-10 10:57:03
Filename detected: - chib.exe (1)
URL file hosting
hXXp://[www].teorija.rs/storage/framework/chib.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-12-08 16:03:18 [52/72] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x45934 285184 5d3cd9d0dd18a36d8c8075e4f097fab7 5a2b7785d68fcb614fe34ec09acf1b61f7f8b377
.rsrc 0x48000 0x520 1536 b04764b8409cf446bfb4ece3a5e741c6 557dce672bff4428651fa8907a7430fe3a2acf69
.reloc 0x4a000 0xc 512 5fde5c85f919209f3e0bf837fae3b492 da3f6327df08919c81cdff6db2a2dbf6585ce5da
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
USER32.dll
mscoree.dll
vaultcli.dll
psapi.dll
IP Found
0.1.2.3
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-12-10 10:57:04