36f6f5876d3a1aa7dca337a435f3a9a38802ffa557e9b0e0501ae34c11e53e80 | Triage

Resubmissions

26/11/2022, 10:12

221126-l8p9yacd6s 1

Sharing

Copy URL Twitter E-mail

General

Target

36f6f5876d3a1aa7dca337a435f3a9a38802ffa557e9b0e0501ae34c11e53e80
Size

95KB
MD5

7e602e2396e174ca36fe8757bb2ae6ff
SHA1

d2d482a7be261a1c8e54a96a8a5b47290fe150df
SHA256

36f6f5876d3a1aa7dca337a435f3a9a38802ffa557e9b0e0501ae34c11e53e80
SHA512

bcaa577fd992aa2b96fdd6cd15ff7f34aaab3e1461b267a3624ad6ec1c3495c63d38ce40392bfd1851b9363d302a2dfc923196a9aa08330639224ec36ea5893a
SSDEEP

1536:ALcwKlR0OjokiTeJhQMddg1noNymsZxUPmevSW15Ptw:AYwK7ckIeJh7MdoNymsZxUPmevSW15PS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36f6f5876d3a1aa7dca337a435f3a9a38802ffa557e9b0e0501ae34c11e53e80

Files

36f6f5876d3a1aa7dca337a435f3a9a38802ffa557e9b0e0501ae34c11e53e80
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

A<V@J
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ