HydraXPaidITGOTLEAKED[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

HydraXPaidITGOTLEAKED.dll
Size

232KB
MD5

4b7c91c91491880ded4915613ce26e38
SHA1

43a23c3d3ec69a8bc9b5b8f1deec17539799d6f6
SHA256

3f11ca3fcf62cb8692729173254e5edad90508146c6ecaf6169555863a71426a
SHA512

b1ab0e23e22796889a0efa68c1acb6e53f3deece482962f5329b35ff35fdef0db163637b379b242a6e531ac2eb2cf1d2cb5490ed52df177deeac4b2d8fcd0a62
SSDEEP

3072:91WYVlIUoBCHV9UaOqPjEalwFVg/fQl/g1FofvN79HNbWL:9UYfDOwV9UqPjESwFC4loIfvJ9HNS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HydraXPaidITGOTLEAKED.dll

Files

HydraXPaidITGOTLEAKED.dll
.dll windows:4 windows x86 arch:x86

Password: poop

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 230KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ