D:\a\DcRat\DcRat\Binaries\Release\Plugins\Miscellaneous.pdb
Static task
static1
Behavioral task
behavioral1
Sample
87e497f6af95de17f0b3521952dec3df.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
87e497f6af95de17f0b3521952dec3df.dll
Resource
win10v2004-20231215-en
General
-
Target
87e497f6af95de17f0b3521952dec3df
-
Size
82KB
-
MD5
87e497f6af95de17f0b3521952dec3df
-
SHA1
c3c2d587705ba71e1e52126f2e294f53e53f9bcb
-
SHA256
e141038cf675e8b119d9b0eee6b5c3622646a0d5e6a3affe9dea952fca348b0a
-
SHA512
e2aacb671e984a84179c4081561d42526aabf5ccf5892c0ea5321a9fbb8501e28759a5d262c2f20a87c5f6adc7bba818c86854333dce6042f684f56288ab0ef7
-
SSDEEP
1536:gZce38lSJ3k45otUV251nos3O4RaamjaL:gZceRU4KSV213O4Raah
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 87e497f6af95de17f0b3521952dec3df
Files
-
87e497f6af95de17f0b3521952dec3df.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_DLL
PDB Paths
Imports
mscoree
_CorDllMain
Sections
.text Size: 80KB - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 692B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ