Static task
static1
General
-
Target
TrombLoader.dll
-
Size
88KB
-
MD5
d6331028dbc7901518c7cda717e4c36d
-
SHA1
36da1b4649d65adacbdb8929f01b5e804da43d77
-
SHA256
5d3b6855fc06657c40da4611076f15b486f66c0a11aa00587987fc1401709107
-
SHA512
ce80c0dca49d925be9779f9e32dbcb5a5593d9cf7f768721c36c2ac70e2481d8d6b3b37d63350c7b509924741aad9070d28c8c85f9e2a993e3b4d33cb6be1243
-
SSDEEP
1536:na0DgTS6vICrFqrMizyRLrnfQG5WwfHd8Wf2k3oTcbSf+h7+0FP3nkM:nbsvRrFK+lfWwf98W+k4TcmYjSM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource TrombLoader.dll
Files
-
TrombLoader.dll.dll windows x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorDllMain
Sections
.text Size: 86KB - Virtual size: 86KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 912B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ