db4b8f788daca0807cf14efba1a35487b94469a5f8bc4fc61d906d9a0bd1f952 | Triage

Sharing

General

Target

db4b8f788daca0807cf14efba1a35487b94469a5f8bc4fc61d906d9a0bd1f952
Size

3KB
MD5

b52080df1d6e2d6d28fbfc90a4f607fe
SHA1

af7904086c0ce9a711f5f6b8e524249ffd864b99
SHA256

db4b8f788daca0807cf14efba1a35487b94469a5f8bc4fc61d906d9a0bd1f952
SHA512

3935a824e831792bd7ea6e5ab607b7a060627cc40817f874a5cb2c07f48e369a988164d26679ab56a9d8f46843183e61d3dcddac0805d961b177188aa78a4b61

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db4b8f788daca0807cf14efba1a35487b94469a5f8bc4fc61d906d9a0bd1f952

Files

db4b8f788daca0807cf14efba1a35487b94469a5f8bc4fc61d906d9a0bd1f952
.dll windows:0 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

g:\fjd3544a2\Build\GeminiLake\RELEASE_MYTOOLS\IA32\FjFeaturePkg\Driver\FjRt8111EepromLess\FjRt8111EepromLess\DEBUG\FjRt8111EepromLess.pdb

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 928B - Virtual size: 922B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 64B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ