Lskj[.]PubMrpAnalyze[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Lskj.PubMrpAnalyze.dll
Size

741KB
MD5

71f6b413effdaa482f9c16ddd34f2573
SHA1

edaaa4b4a7beef2f81271651513f442e8d0e94e2
SHA256

89e5cb1c237ec3df48c7e714ace0914a4f247fd75a62d6e2a9ec3a8e6bfe763b
SHA512

08ba757ccc0c8148301ba66a936a1346d4bd4b8a605c346c85a62ec6d8472c235b4c2fe1d8224627d8ddbe267091339957797b4414152beb678bef6f2ec4d922
SSDEEP

6144:FrgNRnzk9I+i+i+i+i+NiLcnHOEDfXyQelrBnHmDRHeOUAxhFPJK/FzT4TjviVjl:FrgNNseLWOAalrBGR+bYjCFnOU/B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Lskj.PubMrpAnalyze.dll

Files

Lskj.PubMrpAnalyze.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\lserp_cs_6.0\插件库\Lskj.PubMrpAnalyze\obj\Debug\Lskj.PubMrpAnalyze.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 739KB - Virtual size: 739KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ