540f530c0e8a5ac80524b1d6122852a528626aed40cb8043b279929b37a65921 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

540f530c0e8a5ac80524b1d6122852a528626aed40cb8043b279929b37a65921
Size

15KB
MD5

c3141a31918142e2c5811ce0cd109034
SHA1

6326a51d3e0586f2b0e363e346d89ccb56560252
SHA256

540f530c0e8a5ac80524b1d6122852a528626aed40cb8043b279929b37a65921
SHA512

99b8cc44aed4b8630e3784a8c44c96cd442906c2b8342aea2a6547889ea4315fdbe601ba285c16c5de9f2b13abee1b3334b5fcbe44b2db5b898e94cd77855c64
SSDEEP

384:EEwDQEWDPzsLxLevg6QALt4TmxOtKXtTpTyLt:T6Cs1L2ZleKxOtKt9y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
540f530c0e8a5ac80524b1d6122852a528626aed40cb8043b279929b37a65921

Files

540f530c0e8a5ac80524b1d6122852a528626aed40cb8043b279929b37a65921
.dll .js windows:4 windows x86 arch:x86 polyglot

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ