t.exe

First submission 2024-07-09 00:49:32

File details

File type: PE32+ executable (console) x86-64 (stripped to external PDB), for MS Windows
Mime type: application/x-dosexec
File size: 353.73 KB (362217 bytes)
Compile time: 1970-01-01 01:00:00
MD5: e0fe6185dfb5746d0b6bfeed15b93669
SHA1: f06a90ca7792539ee7216bbdfed86b498bb5f701
SHA256: b3ef5aa8a520bb4b4c777f526716c72ae850adb3ac4539364e38417a7734ce9c
Sections 3 UPX0 UPX1 UPX2
Directories 1 import

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXp://39.101.205.127:8888/supershell/compile/download/t.exe VirusTotal Report 39.101.205.127 VirusTotal Report 2024-07-09 00:49:32

PE Sections 2 suspicious

Name VAddress VSize Size SHA1 MD5 Suspicious
UPX0 0x1000 0xa79000 0 da39a3ee5e6b4b0d3255bfef95601890afd80709 d41d8cd98f00b204e9800998ecf8427e
UPX1 0xa7a000 0x5aa000 5939200 0f0661f1963db1cb7874852f45e366c0a90520b3 85d66d7deeb0581ddfccedd412d07b18
UPX2 0x1024000 0x1000 512 da39a3ee5e6b4b0d3255bfef95601890afd80709 d41d8cd98f00b204e9800998ecf8427e