Pay[.]Utility[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Pay.Utility.dll
Size

30KB
MD5

2a0872b7885e9487d7dffbe91269af2a
SHA1

ac701fd33d82d708ac9f85a847fd4c52359cb886
SHA256

e3de88db15b2eb90f55cd787e0b58fce7e215669e5a1272ed956b376fd805dc0
SHA512

1465f62a4679144f473d7cfbdb68fd1abc94d59bec3609febb361690e4ff574466b4e4db8493374cb94e12dfe2d9ca9ba957d38692a2a6a6c80733ca5f1d8f87
SSDEEP

384:uBLBOupBekPSnxQf0ag76C0ASc2pDqAqJqsqFASyi6KF24pVicq0LCyGPqWTcjgF:GjBekGxQMD8bRQtEAORGyDjgAfY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Pay.Utility.dll

Files

Pay.Utility.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\resss_workspace\支付说明\newPay\Pay1\Pay.Utility\obj\Debug\Pay.Utility.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ