records.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 57/71 Related 2734
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 244.00 KB (249856 bytes)
Compile time: 2018-03-16 17:20:44
MD5: ffa91fd016c426f2c1a779b48df1e7f5
SHA1: 048b238f003e47a9de661763852cba8d862a2d29
SHA256: 4c69dd459ac738522e55da513004ec4f4406e6d50c523be31d211de65f6ec082
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-12-14 06:00:07
Last submission: 2019-12-14 06:00:07
Filename detected: - records.exe (1)
URL file hosting
hXXp://salemdreamhomes.com/records.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-10-24 02:08:17 [57/71] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x37e04 229376 dd32a2f6ecbb98b5a9e1128b352740c5 606cf98410246cd09df6296cf9ae25ea964ba6ef
.rsrc 0x3a000 0x4b30 19456 da12587efe83fac445ff1465e9ec8b0f 80ba8d7f6f2271229ba40df5148dab298366fa67
.reloc 0x40000 0xc 512 75ca1d6cb13e0a31ac7f5ee3c5fd166e 90c8f5f5ff98ce2a7b2259b546d962bfe26db57d
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
4.15.17.11
14.13.1.11
2.6.19.11
URL(s)
http://www.w3.org/2001/XMLSchema-instance

#infosec #automation

TheSystem Itself @ 2019-12-14 06:00:08