ext-ms-win-com-ole32-l1-1-1[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ext-ms-win-com-ole32-l1-1-1.dll
Size

4KB
MD5

71b419c4a599da9cb8937aee19dfc72f
SHA1

51a0d8a834eb34c4b9eb20cd57fc6a57da2a5af8
SHA256

21fc0a7a8763d099aec0eb80fdc00b07c273a881d90420feca844920d458bea8
SHA512

848f6ab5f03bc6a3bb478bf25a57440a12c919cf6b8adc1ec6707e9ba4a4c6b67c2f2c1468b46333b59ce0f9e6364379835a2a0ae1703dfab4ac0568bf720571

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ext-ms-win-com-ole32-l1-1-1.dll

Files

ext-ms-win-com-ole32-l1-1-1.dll
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

ext-ms-win-com-ole32-l1-1-1.pdb

Exports

Exports

CheckInitDde
CleanROTForApartment
ClipboardProcessUninitialize
CoAicGetTokenForCOM
CoAllowSetForegroundWindow
CoCheckElevationEnabled
CoGetInterceptorForOle32
CoGetSystemWow64DirectoryW
CoInitialize
CreateItemMoniker
CreatePointerMoniker
DdeBindToObject
DeletePatternAndExtensionTables
DestroyRunningObjectTable
DragDropSetFDT
FindExt
GetObjectFromRotByPath
GetRunningObjectTable
IsRoInitializeASTAAllowedInDesktop
MkParseDisplayName
Ole32DllGetClassObject
OleGetAutoConvert
OleGetPackageClipboardOwner
OleInitialize
OleReleaseEnumVerbCache
OleRun
OleSaveToStream
OleUninitialize
StgCreateDocfile
StgOpenStorageEx
StgOpenStorageOnILockBytes

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ