Polly[.]Extensions[.]Http[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Polly.Extensions.Http.dll
Size

6KB
MD5

0bdc8421f135c085fb491b5c6fa4f93c
SHA1

91a8b45338e371d1a362c1cd27c1d75aa8802ca1
SHA256

d85928ecbae1a7ba8ef218bcbc38e731daa531456b5d18e160f49a5e3844025c
SHA512

d2ba77af3e3a9f583396865b6e7f7eda71ac37d35624ab5d4a28c18e0693d63dec295ecefc1204096debab7903f510ba32386273d50eb78c8e72e6fbcafb8b67
SSDEEP

96:ooevLQi6wBnAPHV0IbGVTm0bydVgBEA5xm4Exox:ooeT760naeU2KVeMg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Polly.Extensions.Http.dll

Files

Polly.Extensions.Http.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\projects\polly-extensions-http\src\Polly.Extensions.Http\obj\Release\netstandard2.0\Polly.Extensions.Http.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ