ACS_Parking[.]DALFactory[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ACS_Parking.DALFactory.dll
Size

48KB
MD5

b6558f04dcf3a7c69a503a5ab786e31c
SHA1

af31bd00defb0940920a3657ca0583dde08c1547
SHA256

e9480679dbcd00a3fa7012ecf84d57f45c9339b02e3099b023715a05e56420b7
SHA512

916168b3b660601fb9929a197f383aedd9f4316f839a6745ce3900c2e4559a76c5a83fc7485bf5ae61aefaddfe26efa4cdf7551244afaa11b499dc36db32f904
SSDEEP

768:DKMXaTQCsGq3JHMXrRyrtwhW6qvsKIc6W:laCH1xIc6W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ACS_Parking.DALFactory.dll

Files

ACS_Parking.DALFactory.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\jenkins01\workspace\ACS4.0\ACS_V4.2.7_2\DALFactory\obj\Debug\ACS_Parking.DALFactory.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ