PURLOG.exe

First submission 2024-09-01 23:02:31

File details

File type: PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
Mime type: application/x-dosexec
File size: 30.07 KB (30787 bytes)
Compile time: 2024-08-21 23:46:33
MD5: f80e16a12d5d20452556df3f9aa02a60
SHA1: c6689ffad28615f68cf7bcfb015eee5a6421bd76
SHA256: 69e9206510b79bce483aee20a08ea8a6b0ebf8f3617732b4e4bcc4a6db7e2b82
Sections 2 .text .rsrc
Directories 1 resource

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXps://financialpartners.top/inc/PURLOG.exe VirusTotal Report financialpartners.top VirusTotal Report 2024-09-01 23:02:31

PE Sections 0 suspicious

Name VAddress VSize Size SHA1 MD5 Suspicious
.text 0x2000 0x1c4b00 1854464 74796e8af94ec66b9585e568e5b665b5a1b38749 15d772a2e00406918535e14aaf31a882
.rsrc 0x1c8000 0x560 1536 da39a3ee5e6b4b0d3255bfef95601890afd80709 d41d8cd98f00b204e9800998ecf8427e

Packers detected 2

Microsoft Visual C++ vx.x DLL
Microsoft Visual C++ v6.0