AntiAttackpart2[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AntiAttackpart2.dll
Size

9KB
MD5

5b13fd196616afea5b2c28e32932d59e
SHA1

db2b3b5f3fb29f20264807f493ea14beef7a1681
SHA256

87f0980740068af9711652ff8ab68723f8b5aacaf7ec5a106c8f4043236862ba
SHA512

f65845e74af0dd544ea5e7dca9d104a0391ebb3c13925e338d3829c531d0238129b478232b8a0429d1728d439aabfadfac82a16687224e0462034dd13f7426bc
SSDEEP

96:f4cO3hSSk2yDQOr8475IBZuwuoRjrH5SvI3WNtaYc0Pk4OjlNSr0Pk1YHAd4sLYi:YcXDDXgQF4584Ycek3ur0M1Y4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AntiAttackpart2.dll

Files

AntiAttackpart2.dll
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.mvid
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ