Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Short information
- ------------------------------------------------------------
- File Name 20etyh0j.exe
- File Size 355840 byte
- Compile Time 2017-08-21 07:33:00
- DLL False
- Sections 6
- Hash MD5 1434bf543d01649e15f8c104630c9331
- Hash SHA-1 5810bba44999cf8b7ca9a672f61cfceded8a95e2
- Imphash 4cb4666d64e85218df03f899472bde6c
- ssdeep 6144:pAOWNuZ4rgsTJ5gW7sVxdSCUshGOuGacgFeTqkuyJlzZr:pEvrn118eshGBCgFeTqkuyJDr
- Detected Packer, Anti Debug
- Directory Import, Resource, Debug, TLS
- Packer matched [2]
- ------------------------------------------------------------
- Packer Microsoft Visual C++ 8
- Packer VC8 -> Microsoft Corporation
- Anti Debug discovered [4]
- ------------------------------------------------------------
- Function GetLastError
- Function IsDebuggerPresent
- Function TerminateProcess
- Function UnhandledExceptionFilter
- Suspicious API discovered [22]
- ------------------------------------------------------------
- Function CloseHandle
- Function CreateFileW
- Function ExitProcess
- Function FindFirstFileExA
- Function FindNextFileA
- Function GetCommandLineA
- Function GetCommandLineW
- Function GetCurrentProcess
- Function GetCurrentProcessId
- Function GetModuleFileNameA
- Function GetModuleHandleExW
- Function GetModuleHandleW
- Function GetProcAddress
- Function GetStartupInfoW
- Function GetTickCount
- Function IsDebuggerPresent
- Function LoadLibraryExW
- Function LoadLibraryW
- Function SetFilePointerEx
- Function TerminateProcess
- Function UnhandledExceptionFilter
- Function WriteFile
- Suspicious Sections discovered [2]
- ------------------------------------------------------------
- Section .tls
- Hash MD5 1f354d76203061bfdd5a53dae48d5435
- Hash SHA-1 aa0d33a0c854e073439067876e932688b65cb6a9
- Section .rsrc
- Hash MD5 60fbefacdbdfb69270d11310cff7a556
- Hash SHA-1 cd99f7778fbcb3b33385e7acdefda9cd859431c0
- File name discovered [3]
- ------------------------------------------------------------
- Library KERNEL32.dll
- Library USER32.dll
- Library WINHTTP.dll
Add Comment
Please, Sign In to add comment