Static | ZeroBOX

PE Compile Time

2066-09-25 16:28:10

PDB Path

F:\Arquivos\Crypter bypass all and vbs e js 13-16-2023 original png\New Private Panell Src 3.0 PASTE.EE\New Private Panell Src 3.0\New Metod Defender Dll\ClassLibrary3\ClassLibrary3\obj\Release\ClassLibrary3.pdb

PE Imphash

dae02f32a21e03ce65412f6e56942daa

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00002000 0x0000267c 0x00002800 5.45303335721
.rsrc 0x00006000 0x00000398 0x00000400 2.89614777156
.reloc 0x00008000 0x0000000c 0x00000200 0.0815394123432

Resources

Name Offset Size Language Sub-language File type
RT_VERSION 0x00006058 0x0000033c LANG_NEUTRAL SUBLANG_NEUTRAL data

Imports

Library mscoree.dll:
0x10002000 _CorDllMain

!This program cannot be run in DOS mode.
`.rsrc
@.reloc
v4.0.30319
#Strings
ContextValue`1
ThreadSafeObjectProvider`1
Class1
ClassLibrary3
get_UTF8
<Module>
LAbWJK
System.IO
Dispose__Instance__
Create__Instance__
DownloadData
ProjectData
mscorlib
Microsoft.VisualBasic
Synchronized
GetMethod
Replace
CreateInstance
get_GetInstance
defaultInstance
instance
GetHashCode
Invoke
RuntimeTypeHandle
GetTypeFromHandle
set_WindowStyle
ProcessWindowStyle
set_FileName
get_ProcessName
lnknome
CheckForVirtualMachine
GetType
get_Culture
set_Culture
resourceCulture
MethodBase
ApplicationBase
ApplicationSettingsBase
myClose
StrReverse
EditorBrowsableState
CompilerGeneratedAttribute
GuidAttribute
HelpKeywordAttribute
GeneratedCodeAttribute
DebuggerNonUserCodeAttribute
DebuggableAttribute
EditorBrowsableAttribute
ComVisibleAttribute
AssemblyTitleAttribute
StandardModuleAttribute
HideModuleNameAttribute
AssemblyTrademarkAttribute
TargetFrameworkAttribute
DebuggerHiddenAttribute
AssemblyFileVersionAttribute
MyGroupCollectionAttribute
AssemblyDescriptionAttribute
CompilationRelaxationsAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
AssemblyCompanyAttribute
RuntimeCompatibilityAttribute
get_Value
set_Value
GetObjectValue
IndexOf
NewLateBinding
set_Encoding
System.Runtime.Versioning
FromBase64String
DownloadString
ToString
GetString
Substring
get_Length
startupvbs_lnk
icoonelnk
Microsoft.VisualBasic.MyServices.Internal
ConditionalCompareObjectEqual
System.ComponentModel
LateCall
ClassLibrary3.dll
AntiVm
System
antivmm
resourceMan
System.ComponentModel.Design
AppDomain
get_CurrentDomain
get_Application
MyApplication
System.Configuration
System.Globalization
Interaction
System.Reflection
Exception
MethodInfo
CultureInfo
set_StartInfo
ProcessStartInfo
m_AppObjectProvider
m_UserObjectProvider
m_ComputerObjectProvider
m_MyWebServicesObjectProvider
get_ResourceManager
System.CodeDom.Compiler
get_User
get_Computer
MyComputer
ClearProjectError
SetProjectError
Activator
.cctor
namevbs
caminhovbs
System.Diagnostics
Microsoft.VisualBasic.Devices
get_WebServices
MyWebServices
Microsoft.VisualBasic.ApplicationServices
System.Runtime.InteropServices
Microsoft.VisualBasic.CompilerServices
System.Runtime.CompilerServices
System.Resources
ClassLibrary3.My.Resources
ClassLibrary3.Resources.resources
DebuggingModes
GetProcesses
Strings
get_Settings
MySettings
ReferenceEquals
Contains
Conversions
RuntimeHelpers
Operators
Process
set_Arguments
Exists
Concat
CreateObject
ConcatenateObject
MyProject
LateGet
System.Net
LateSet
get_Default
WebClient
Environment
Convert
System.Text
m_Context
ClassLibrary3.My
get_Assembly
MySettingsProperty
WrapNonExceptionThrows
ClassLibrary3
Copyright
2021
$a15941e3-7d38-40ba-bb90-fa19a6c6856b
1.0.0.0
.NETFramework,Version=v4.8
FrameworkDisplayName
.NET Framework 4.8
MyTemplate
11.0.0.0
3System.Resources.Tools.StronglyTypedResourceBuilder
17.0.0.0
KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator
17.5.0.0
4System.Web.Services.Protocols.SoapHttpClientProtocol
Create__Instance__
Dispose__Instance__
My.Computer
My.Application
My.User
My.WebServices
My.Settings
lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
RSDS0n
F:\Arquivos\Crypter bypass all and vbs e js 13-16-2023 original png\New Private Panell Src 3.0 PASTE.EE\New Private Panell Src 3.0\New Metod Defender Dll\ClassLibrary3\ClassLibrary3\obj\Release\ClassLibrary3.pdb
_CorDllMain
mscoree.dll
ClassLibrary3.Resources
vmtoolsd
VBoxService
C:\Windows\System32\WindowsPowershell\v1.0\powershell.exe
-WindowStyle Hidden Copy-Item -Path *.vbs -Destination
%Debug%
WScript.Shell
SpecialFolders
Startup
CreateShortcut
IconLocation
C:\Windows\System32\shell32.dll,
TargetPath
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
WorkingDirectory
WindowStyle
Arguments
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe -WindowStyle Hidden Start-Sleep 5;Start-Process
Description
Microsoft
https://uploaddeimagens.com.br/images/004/682/782/original/Rump_vbs.jpg?1701793262
<<BASE64_START>>
<<BASE64_END>>
C:\Windows\Microsoft.NET\Framework
\v4.0.30319
Fiber.Class1
\RegAsm.exe
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
Comments
CompanyName
FileDescription
ClassLibrary3
FileVersion
1.0.0.0
InternalName
ClassLibrary3.dll
LegalCopyright
Copyright
2021
LegalTrademarks
OriginalFilename
ClassLibrary3.dll
ProductName
ClassLibrary3
ProductVersion
1.0.0.0
Assembly Version
1.0.0.0
Antivirus Signature
Bkav W32.AIDetectMalware.CS
Lionic Clean
Elastic malicious (high confidence)
MicroWorld-eScan Clean
FireEye Clean
CAT-QuickHeal Clean
Skyhigh Clean
ALYac Clean
Malwarebytes Clean
Zillya Clean
Sangfor Clean
K7AntiVirus Clean
BitDefender Clean
K7GW Clean
CrowdStrike win/malicious_confidence_60% (D)
Arcabit Clean
Baidu Clean
VirIT Clean
Symantec Clean
tehtris Clean
ESET-NOD32 a variant of MSIL/TrojanDownloader.Agent.HUQ
Cynet Malicious (score: 100)
APEX Malicious
Paloalto Clean
ClamAV Clean
Kaspersky Clean
Alibaba Clean
NANO-Antivirus Clean
ViRobot Clean
Rising Clean
TACHYON Clean
Sophos Clean
F-Secure Clean
DrWeb Clean
VIPRE Clean
TrendMicro Clean
Trapmine Clean
CMC Clean
Emsisoft Clean
Ikarus Clean
Jiangmin Clean
Webroot Clean
Varist Clean
Avira Clean
Antiy-AVL Clean
Kingsoft Clean
Gridinsoft Clean
Xcitium Clean
Microsoft Clean
SUPERAntiSpyware Clean
ZoneAlarm Clean
GData Clean
Google Clean
AhnLab-V3 Clean
Acronis Clean
McAfee Clean
MAX Clean
DeepInstinct MALICIOUS
VBA32 Clean
Cylance Clean
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Tencent Clean
Yandex Clean
SentinelOne Static AI - Suspicious PE
MaxSecure Clean
Fortinet Clean
BitDefenderTheta Clean
AVG Clean
Avast Clean
No IRMA results available.