2841fe6e475f6dc2055a8ada03cfd71a51be04125f8745d197dd7f1a6830d78c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2841fe6e475f6dc2055a8ada03cfd71a51be04125f8745d197dd7f1a6830d78c
Size

30KB
MD5

dbf48358bcb136a4c46cf3c8b1066724
SHA1

94dd7756024d8d36f4c17b144ceac31f6b38b7f1
SHA256

2841fe6e475f6dc2055a8ada03cfd71a51be04125f8745d197dd7f1a6830d78c
SHA512

41a445fbe77e25ebd31a51ddc631e1b43daa4fcdb2a4c205ab534f067a03a8270014b43a81d6006bf08452ed0cc814f7088448674fd5d86899360a0eacbc099b
SSDEEP

768:GStXf+iRQ6Zf2n0faH3JudFx+ubYcj3YHHTRR0Eqz3esUZzmYmL:FXf7R3En0faHUdBxU0EAr4mzL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2841fe6e475f6dc2055a8ada03cfd71a51be04125f8745d197dd7f1a6830d78c

Files

2841fe6e475f6dc2055a8ada03cfd71a51be04125f8745d197dd7f1a6830d78c
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\NATHAN\Documents\Visual Studio 2015\PojectsGit\paf-ecf\ECF_Elgin\obj\Debug\ECF_Elgin.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ