AWSSDK[.]CognitoIdentity[.]dll | Triage

Sharing

General

Target

AWSSDK.CognitoIdentity.dll
Size

119KB
MD5

077d87642ad4a529f29c588103e1e9e9
SHA1

5f457ed88006ef6cd8754e8009ec90ee88ec4222
SHA256

245c739a5dfc5d54bfe748463cad69c62672376e5223d320fd5ea06e23e5ef26
SHA512

33d0a33fd7719fde909f4d21546779762ecbcfd937ab94a031e26665642dbd5a5f831fd97e4ddff8c44857474190c4e07605ab055a8452091230906d43fb4e78
SSDEEP

1536:FlW8seLJg1Acf9xVMfYWuL8EFIZRSqRNAbWW053DACRaEYJsn4uoSUgDddHkgNl:FVWv0BPWJduMsddHkg901

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AWSSDK.CognitoIdentity.dll

Files

AWSSDK.CognitoIdentity.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\JenkinsWorkspaces\trebuchet-stage-release\AWSDotNetPublic\sdk\src\Services\CognitoIdentity\obj\AWSSDK.CognitoIdentity.NetStandard\Release\netcoreapp3.1\AWSSDK.CognitoIdentity.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ