Static task
static1
General
-
Target
YizziCamModV2.dll
-
Size
81KB
-
MD5
a0f78c80aec952034fc930740b1bf050
-
SHA1
d0978db828b056b3cbf80fc60274de274d303fce
-
SHA256
c6ebb87e7cf3740d3a5a7bbaa241a2fca8a136b787cfbb4eb90ffd493d3ea340
-
SHA512
2180787b0058a49cedfe605782f23fd9e7b9ef0243acb0d41f3d27cca85a22ed1b1de123968014486ecfa1a9e9d1cc42783be0f3ecc442fdf6bee966949be778
-
SSDEEP
1536:+xgHJegDwMLkHIddzO9DZSSJvGbciHXzuHtzHFBguVZp00A9xQPc4Qdo:+xgHJhDvzqZr5twqHBHXX0j/WcPdo
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource YizziCamModV2.dll
Files
-
YizziCamModV2.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 79KB - Virtual size: 78KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 836B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ