WrysersGoPro[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

WrysersGoPro.dll
Size

61KB
MD5

4c673eedd1df071d4a647a2484749fe4
SHA1

a94467048df85502f7743f21e1fe956c2eb0b9a6
SHA256

2b33d450b769e50b7eb5f22cc1130667bdd0b2295e1b08a33a5998affd804fe1
SHA512

9bb65e4b98462d5df2a14182156d62a0392d7d265654aae92e3bc151d7ae11f3c9a33530d22e8a4281bce31ed26b345a66b91bcc14686ef95383d9657cfaa1ee
SSDEEP

1536:+0NAdPeBRu/RTpV3s0sD4e8Z3xW9AzcK:+0y7Vy8ZBW9Ah

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
WrysersGoPro.dll

Files

WrysersGoPro.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ