Kdbndp[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Kdbndp.dll
Size

715KB
MD5

fc262771bb1ddbddcc8838596de02db5
SHA1

933552128ab81f33eaa47b0525a938988d4eaaea
SHA256

d974da57574a91880174f520b3bc7ffc461c9ac2db1924ca17fab39dc85c2838
SHA512

9c966fb23daff6429be3546a158459dd9983724200554de904a6595a52d5878bd274743c3d9f73b085e1c332bd8808faf5871dcabf78cf2a5d1c28ea8286b174
SSDEEP

6144:6NYio43HSCg4u0COl4J/2G+5E0GwSL41wkNBUlKrZY6AbGNRd1dyNz9jBPd9C+sF:6NYioHCg4uul412GBwSUOTGVMfypN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Kdbndp.dll

Files

Kdbndp.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

E:\code\9\28\kdbndp-4.0.7\src\Kdbndp\obj\Release\netstandard2.0\Kdbndp.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 713KB - Virtual size: 712KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ