Lskj[.]PubAdd3[.]dll | Triage

Sharing

General

Target

Lskj.PubAdd3.dll
Size

110KB
MD5

5252e1e63a60b50413e9fa8a5cdf8f37
SHA1

744771bc030e8aa0341316703b6268bae8b5669f
SHA256

95d28aa41b868fbc578b3519da2d50121b0f4e1e98e22775201818157cfaa7fa
SHA512

62ba9b62e86f5e9576b12cdb05ec35cc0319da1b489970fd09966c3ecd504a5cd3ad1f686275c46568242a6f8e1c34c16f3b23b49b62fb0c2b6ec429894c7589
SSDEEP

768:/xZmi5Gsp2vOkk85cPAn5fgotHJPlnzgI/cOHQppl6nuSYAw2VtbJPegRPNGzJvp:sZqYHoiM8O7CUAX2Ovoy4Pa4MlBQ9l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Lskj.PubAdd3.dll

Files

Lskj.PubAdd3.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\朗速科技\项目代码\lserp_cs\插件库\Lskj.PubAdd3\Lskj.PubAdd3\obj\x86\Debug\Lskj.PubAdd3.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ