Kingdee[.]CDP[.]WebApi[.]SDK[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Kingdee.CDP.WebApi.SDK.dll
Size

48KB
MD5

156b3026525b1496df38814dc63ddd62
SHA1

2bbf25b1d0f090b69b8f6d8010ee5495f681ae45
SHA256

db07b72de7fb6f9bb720d043774b70c598e89f4eaad32b4e3888d01f6b93f0cf
SHA512

7c8afe4b13a6eeb7d9da904158d9afcb59e05034ac3e3fb87d9a1f436b280e4c46af4037a39282eb01a2bda3184afdd943676be55ac2eed44ffc8e98b48e6d9b
SSDEEP

768:irSyvbhl54pg9r2R28Cqcm0sNFg3ZCbI9nXT/o+xanNcOWLjmcVPUmsr6HWR3:RGdvH9k284fsNCZCo2NimgPU7625

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Kingdee.CDP.WebApi.SDK.dll

Files

Kingdee.CDP.WebApi.SDK.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\Project\cdpwarehouse\SDK\net\netcore\Kingdee.CDP.WebApi.SDK\obj\Release\net6.0\Kingdee.CDP.WebApi.SDK.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ