API tools faq
paste
Advertisement
guelfoweb

PEframe 5.0 - Short outoput

guelfoweb
Feb 10th, 2016
10,479
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.52 KB | None | 0 0
raw download clone embed print report
  1. Peframe v. 5.0
  2.  
  3. Short information
  4. ------------------------------------------------------------
  5. File type PE32 executable (GUI) Intel 80386, for MS Windows
  6. File name jucheck.exe
  7. File size 80896
  8. Hash MD5 070e9a317ee53ac3814eb86bc7d5bf49
  9. Compile time 2014-10-19 09:14:39
  10. Sections 5 (0 suspicious)
  11. Directories import, resource, debug, relocation
  12. Detected packer, mutex, antidbg
  13. Import Hash 3e68822a115a7a54dd73bca4eb619c7d
  14.  
  15. Paker info
  16. ------------------------------------------------------------
  17. Microsoft Visual C++ 8
  18.  
  19. Resources info
  20. ------------------------------------------------------------
  21. RT_MANIFEST 381 <?xml version='1.0' encoding='UTF-8
  22.  
  23. Import function
  24. ------------------------------------------------------------
  25. ADVAPI32.dll 7
  26. SHELL32.dll 1
  27. KERNEL32.dll 80
  28. USER32.dll 2
  29. WINHTTP.dll 9
  30.  
  31. Antidbg info
  32. ------------------------------------------------------------
  33. GetLastError
  34. IsDebuggerPresent
  35. IsProcessorFeaturePresent
  36. OutputDebugStringW
  37. Process32FirstW
  38. Process32NextW
  39. TerminateProcess
  40. UnhandledExceptionFilter
  41.  
  42. Mutex info
  43. ------------------------------------------------------------
  44. CreateMutexA
  45. ReleaseMutex
  46. WaitForSingleObject
  47.  
  48. Apialert info
  49. ------------------------------------------------------------
  50. CloseHandle
  51. CopyFileA
  52. CreateDirectoryA
  53. CreateFileW
  54. CreateMutexA
  55. CreateProcessA
  56. CreateThread
  57. CreateToolhelp32Snapshot
  58. DeleteCriticalSection
  59. DeleteFileA
  60. DeviceIoControl
  61. ExitProcess
  62. GetCommandLineA
  63. GetCurrentProcess
  64. GetCurrentProcessId
  65. GetModuleFileNameA
  66. GetModuleFileNameW
  67. GetModuleHandleExW
  68. GetModuleHandleW
  69. GetProcAddress
  70. GetStartupInfoW
  71. HeapAlloc
  72. InitializeCriticalSectionAndSpinCount
  73. IsDebuggerPresent
  74. LoadLibraryExW
  75. LoadLibraryW
  76. MessageBoxA
  77. MessageBoxW
  78. OpenProcess
  79. OpenProcessToken
  80. OutputDebugStringW
  81. Process32FirstW
  82. Process32NextW
  83. ReadProcessMemory
  84. RegCloseKey
  85. RegOpenKeyExW
  86. ReleaseMutex
  87. SetFilePointerEx
  88. Sleep
  89. TerminateProcess
  90. UnhandledExceptionFilter
  91. WaitForSingleObject
  92. WriteFile
  93.  
  94. Filename found
  95. ------------------------------------------------------------
  96. Web Page 179.43.160.34/wp-content/temp/gate.php
  97. Library mscoree.dll
  98. Library USER32.DLL
  99. Library kernel32.dll
  100. Library ADVAPI32.dll
  101. Library SHELL32.dll
  102. Library WINHTTP.dll
  103.  
  104. IP found
  105. ------------------------------------------------------------
  106. 179.43.160.34
  107.  
  108. Fuzzing match
  109. ------------------------------------------------------------
  110. 1 String too long
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!