SZ9kQsI[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SZ9kQsI.dll
Size

13KB
MD5

e7d02233a1066fab7edb60efaf93298f
SHA1

597549b57cd02eb2d73e9d00645c0db6244ca17b
SHA256

f1179d4ab44eb1432eb47a788f77ffd15d723e8989c452fb28a7e20b5be845c2
SHA512

7bcfa84c7f1ffd011ed1b8cfcb0efd9a81cb0fc205f973c4e9119bdff06514cfdd19395042344a44380feef8d867378c8d912daf3cf92809f31fab69307ddc86
SSDEEP

192:ATTDLsfrcpAeXel7ZN3lGTEVkiB8FQqkMpl4BplslYCxplnngplgSuzejrplDplP:cEfQLulFFlGyVJN53

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SZ9kQsI.dll

Files

SZ9kQsI.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ