RCMAdminAPI[.]Data[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RCMAdminAPI.Data.dll
Size

82KB
MD5

9e610bdb8bfaeb6e30acb5d0b1cf28a4
SHA1

08c6c99b732078322ba88e91e197dbb8b84ea0c5
SHA256

c66a88230e1127f830e5bbcad9601cba6741652794972bfe5167b2f61098879d
SHA512

15fa46867a4d83a03f069e4a95feca456037386ec31196cce114a3b7550ade86b4547843489e19b8c698ccfa9400087238b719f8e853cf6fff2ff84f3c27fc23
SSDEEP

768:plLso8tdbyG0QasQ/OLxs3Gv3Ro3Ua3X3ce3cJZ7w9aW9I+NUJqXdPkhstClu4r2:plLjOa3OFZJjZ1JNMfystd/p9+mEPwQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
RCMAdminAPI.Data.dll

Files

RCMAdminAPI.Data.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Satinder Singh\source\repos\RCMAdminAPI\RCMAdmin.Data\obj\Release\net7.0\RCMAdminAPI.Data.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ