DefNOTMETEOR[.]rar | Triage

Sharing

General

Target

DefNOTMETEOR.rar
Size

31KB
MD5

a30375c165cd923d87778e616c405824
SHA1

e64307e28d9e4a120a52570acdde3facf702299b
SHA256

b8d49f6c88550872d89e8e86b0bccb3f5e8924fda89520af25fba39c014cb766
SHA512

1c6fb46145b7a52ee2a8c0f6d2e95ae66bc96d69de690826ff42e2f241f3ea63746f15a36ff0f6ae37c4ba1b986347919f8e10b7a315c1b35be8aa4a7af5ce03
SSDEEP

768:6+jdnDFAgjWztk0CG9zvTYg5hasVbAdw0uqc6/dYMMfoFQ:6+ZnJbitkoDTYg5hPbAdq4YMs/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Mango_Cool_Menu.dll

Files

DefNOTMETEOR.rar
.rar
Mango_Cool_Menu.dll
.dll windows:4 windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ