bJSBJ.exe
First submission 2022-08-02 20:34:02
File details
| File type: | PE32 executable (GUI) Intel 80386, for MS Windows |
| File type: | 171.5 KB (175616 bytes) |
| Compile time: | 2005-06-10 09:45:04 |
| MD5: | 8c342749c931899e74cd499d479a879e |
| SHA1: | 2a062fbf9988f3e4b4f29ceaed6b4d5a46f41700 |
| SHA256: | 82b7bb6c93f6d178052cd2694b75e5bc45338d336d7b95a746707d8bdaf90348 |
| Sections 1 | .text��� |
| Virus Total: | 54/70 VT report date: 2022-08-02 18:19:30 |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXp://109.206.241.81/htdocs/bJSBJ.exe  |
109.206.241.81 |
2022-08-02 20:34:02 |
PE Sections 1 suspicious
| Name | VAddress | VSize | Size | SHA1 | MD5 | Suspicious |
|---|---|---|---|---|---|---|
| .text��� | 0x1000 | 0x29a20 | 171008 | b42b194bd5cc2c24f773e2aded6b2d63ab4650ab | 6386faa676476741d16040a2a9d9a30e |
Packers detected 1
| Borland Delphi 3.0 (???) |
Anti debug functions 1
| VMCheck.dll |