1f175b2d2f4b2799644aecace940e8f0_dll32_JC[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f175b2d2f4b2799644aecace940e8f0_dll32_JC.dll
Size

5.4MB
MD5

1f175b2d2f4b2799644aecace940e8f0
SHA1

978d637edbb45ffa3ce53f16b35b793d8a6b32b1
SHA256

87a43a085df6de0367672bd1f0145ebb0901c7a8a2431d5ad270575309f4f3d9
SHA512

9c08b0f2f1455bfd394701ec45d7d753d4b0c364b2d3cfd4fda7f1bd9719b941538c224d1e1695f56c9ae8487c493ddd04b15c871f1715f0827558406c03ee0a
SSDEEP

98304:XF2ic4TpcvP9H76J+vMZmBYnTZtKpPRwYajHdB1qrq4SH3n4+KBA395i/hRJxKcs:cUo76J+vTAKpPRPa7dBorq4SH3n4+tsH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f175b2d2f4b2799644aecace940e8f0_dll32_JC.dll

Files

1f175b2d2f4b2799644aecace940e8f0_dll32_JC.dll
.dll regsvr32 windows:4 windows x86

8b0715b8535aa03cc0c54dd4d5de7a97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm60

MethCallEngine
ord516
ord666
ord592
ord593
ord595
ord596
ord520
ord631
ord632
EVENT_SINK_AddRef
ord528
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ProcCallEngine
ord537
ord645
ord648
ord571
ord685
ord101
ord102
ord103
ord104
ord105
ord616
ord617
ord619
ord581

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.3MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ