EDIConvertApi[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

EDIConvertApi.dll
Size

164KB
MD5

58cc79052f42fa9a0bedf333c158efcb
SHA1

697ed652f0f482bafb2ae2bd49ae5f58f9826fe8
SHA256

141e17a487e5c03204c1b374f464421bd02c76f9cefb427bd80e42683e6f77bd
SHA512

d3a91f3c3ecb6003559d80ecc3554341d30dae2563f07c971b8fc47dc81174ecbfbfbf834aba27296ff55237388dba3352d8b758f4df582db9c49613b54b44f3
SSDEEP

3072:YQ7z2DNgVItZgwIt4q0Zu5OiBahKgJqjvc59vbLnKZ2Z0QA96WL:YlVU3a4+qzc593KZ2ZlA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
EDIConvertApi.dll

Files

EDIConvertApi.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\EDIConvertApi\EDIConvertApi\EDIConvertApi\obj\Debug\EDIConvertApi.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ