Mall[.]Common[.]dll | Triage

Sharing

General

Target

Mall.Common.dll
Size

976KB
MD5

6b1907069d263398b14af75b1bc1d397
SHA1

ebe410957227fe2df3d7a13c32bb7a2dad9683d7
SHA256

4b9bd0e4f2e1d716af13aaf5d6862dd39dfc914c6b5a13847c21d7b03bcc1b2a
SHA512

4c356911a9c0ff8b51d2c52b3b6318fd0ad66d0c2af4de5bead9f206fceca2eb58fde3797396e49f68b441661b7ac9ffce584567e5a4eceb3ca078aaefdb6c07
SSDEEP

12288:Ux+bWV1+womzPDmY75hCAwmKNPGrn7YY8QFYxdW1N:RWjamzimibmfrnhfFYPWD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Mall.Common.dll

Files

Mall.Common.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\Work\MALLCode\小猫停车MYSQL版本\岗亭程序WPF\Mall.Common\obj\Debug\Mall.Common.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 974KB - Virtual size: 974KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ