YizziCamModV2_FIX[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

YizziCamModV2_FIX.dll
Size

79KB
MD5

66b7a811903370c46a5eae8b46db5400
SHA1

337bb7871e5e1f53c15b178ddc9cac82118b6f2d
SHA256

05b4e636012ae12902e28108996bf8f56d037d95992cbdd4894b631fbc0c2f1d
SHA512

f6aac603348ef161c1ff1cdb901a872ea93fabf58ff2b40965285a5daf208ace20b9af3f03f58d36b6c2965a1bf6adcab6d63b0850eaaf53d07738230b4e4b17
SSDEEP

1536:VzD2Y9ngHoI0ldMgx9DZSSJvGbciHX8uG61UYUbEdlHfJpvj:NbZr5twmbYUADHfJt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
YizziCamModV2_FIX.dll

Files

YizziCamModV2_FIX.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ