MaterialSkin[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MaterialSkin.dll
Size

576KB
MD5

4fb7f5138452fc46e381582b103d8ffa
SHA1

6dc69ff75e330a45a3917625930498d0764c5506
SHA256

4976de77c3241a641f6a70e6e93d844cc89dc3146cf1480fd5c98256516ecf05
SHA512

f615290c9964b9c4a33a463018fdaf134267fa0869742d8433b418da36284c1d15dbb2ab0a6b4e9e4c8c4d7fa81f10a131504af680af194eefd6ab5561172b54
SSDEEP

12288:fteMXkxswcXKC2zNWfm2YRm5sm2YRm5hkxswcXKC2zNW:LXZX9uWfm2Yysm2YyhZX9uW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MaterialSkin.dll

Files

MaterialSkin.dll
.dll windows:4 windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 574KB - Virtual size: 573KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ