SecuriteInfo[.]com[.]Variant[.]Cerbu[.]157962[.]17892[.]14528[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Cerbu.157962.17892.14528.dll
Size

301KB
MD5

105e1eba57ef4294d1ccbe8688c36119
SHA1

57b715b9083c10f77f06743a59947906fe1f45bd
SHA256

ff8a36724ca1cbfeea9300434cfce44693be110795826b68ee4c6a338356929f
SHA512

1359733cf3d93686b2b3bc958e0b79c1f550e1f75d7d87c89c8b85da2c141251eb7d2566f1f7388ab47d4cde8abfd92c4db2517d1827f10303eb103fb889ab90
SSDEEP

6144:Sa2LKu77ovRoaZ+GGEg8x82i8yrzjdDDt2n4:3EnuvYEuxt2n4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Variant.Cerbu.157962.17892.14528.dll

Files

SecuriteInfo.com.Variant.Cerbu.157962.17892.14528.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 299KB - Virtual size: 298KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ