C:\Projetos\purecloud\extrator\mutant-interaction-extractor\Domain\obj\Release\net6.0\Domain.pdb
Static task
static1
Behavioral task
behavioral1
Sample
Domain.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
Domain.dll
Resource
win10v2004-20240508-en
General
-
Target
Domain.dll
-
Size
43KB
-
MD5
06d5a8f1f9695e2174d58d4a97c22e98
-
SHA1
29266e64cf077cf4aa329332e67c67046b7e8f23
-
SHA256
818dabdcd09ae8c71e2728123baf7444131a322814c968d09054d1be1076eded
-
SHA512
59ed435333162ed50b644725bfe903d296ca570895b2ff741c1f72113b1a371107491f1a0cb2aa5ddd5407a79fcc9ad495204ce8a0a03d3a32782e6290a94b48
-
SSDEEP
768:FKIg10e1zNnGk0us46yrrKPkgqbL0pqjKVrgzbRtNBFnJ4LZ:F/W1BG+6CLaaKVbl
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Domain.dll
Files
-
Domain.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
mscoree
_CorDllMain
Sections
.text Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 860B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ