TCOnlinePay[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TCOnlinePay.dll
Size

58KB
MD5

fa6352edb9d6fe0d6d9398da73d8ede6
SHA1

a1b29f2e1b8f428baec3aec84a4096e74dd83c13
SHA256

0220b70836b8e5907afc7e153009b0f8d56770b174d80283f206d4e238daac89
SHA512

93311e8d59ac509a2b722b4de4bf38af207894e8f855ee29765e25afb5e77d0dd61cc32031f39fe84bd743c32289532f207bf0435cbc06684bcccf00ee84546e
SSDEEP

768:dgOaw6kfEdHGYWsScMnB0pN8rvx52xxpJ6PNOhAXtFjC+xpx:dgOaw61gYWzB0m7t1OKr2Qpx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TCOnlinePay.dll

Files

TCOnlinePay.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\workdir\TCOnlinePay\TCOnlinePay\obj\Release\TCOnlinePay.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ