DllRegisterServer
General
-
Target
180000000.dll
-
Size
188KB
-
MD5
088d5ae7bf658a01bae131622186d75c
-
SHA1
298c193828b115cfde05cdd742d484e08928dc9e
-
SHA256
1ddcda317d178189da4317cef09a8e59efc09ed6bb59fab23d8dae2c4c9cabd8
-
SHA512
43be87f26e20fef647d1c6cad65cf13deb31d0c970bcf3772329504e0f84cee4ed67aecda95bd757d618f85be84082137a99ea68a26d9a8adef7822e5b0c1feb
-
SSDEEP
3072:dCS65TUo7WInfB2A5MNJgEqVw7UPej+1Ae7swyo8sTYBA:cJ5TUoznfUbgEqCI1lcsTYy
Score
10/10
Malware Config
Signatures
-
Emotet family
Files
-
180000000.dll.dll regsvr32 windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Exports
Exports
Sections
.text Size: 172KB - Virtual size: 172KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ