easy_Benign_ffdcb8fc0b3d9631df802cbbe2ce3ddd67e98bd4c4ae82a182dae3861353ebd5[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

easy_Benign_ffdcb8fc0b3d9631df802cbbe2ce3ddd67e98bd4c4ae82a182dae3861353ebd5.dll
Size

12KB
MD5

6846e05095227530b42d1f09b00f6e14
SHA1

41ae0f5b5f9fbbf740ce5b08807e18fde64c462a
SHA256

ffdcb8fc0b3d9631df802cbbe2ce3ddd67e98bd4c4ae82a182dae3861353ebd5
SHA512

0503321a48f8a98859b5d32353dce99a2135515ca90fab0193186e9cc857a71f5e6c0a3fdeb25fc3b9fb1fcba9b02ca70570cd705f8a0218c47f11425d5dd853
SSDEEP

96:cYzTkgyDcW+klkDP3Ho2LM1QQCakW3YCaoICIk3mbP3UrH3XBGEqMSWrHlz:tzM+nuLQW3YCn72bPU73Xpq05

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
easy_Benign_ffdcb8fc0b3d9631df802cbbe2ce3ddd67e98bd4c4ae82a182dae3861353ebd5.dll

Files

easy_Benign_ffdcb8fc0b3d9631df802cbbe2ce3ddd67e98bd4c4ae82a182dae3861353ebd5.dll
.dll windows x86

f07349635ccb8de21ff3fc191344e111

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

libapriconv-1

apr_iconv_mod_noevent

msvcr110

_calloc_crt
__dllonexit
_onexit
_unlock
_except_handler4_common
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_lock
_initterm_e
_initterm
_malloc_crt
free
_amsg_exit
__CppXcptFilter
__clean_type_info_names_internal

kernel32

IsProcessorFeaturePresent
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
DecodePointer
EncodePointer
IsDebuggerPresent

Exports

Exports

iconv_module

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 476B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ