PowerBOM[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PowerBOM.dll
Size

670KB
MD5

6277caaf32ead1d9d9827eb356345e43
SHA1

301ff4091923a8485178e614afa5bf3c6cf62d3b
SHA256

06c86b38f999b54c822ddf2e56a0e6af2b66101ee26fd46b6d0b6ad3db35db54
SHA512

972bdcb604fea962e6c8179d5b36aa5736dc35899694369a6f69b160bd714a5b717197b9abef10ce56e780f81810a4898804311c968d747f3110c4949273f17a
SSDEEP

12288:prkFfD42qWGag6m0mCCcdJV5Hl9pKpbe8MXtVeU8z74QWD4l:prkFfD42qWGag6mZCCcdJV5Hl9p0e8MW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PowerBOM.dll

Files

PowerBOM.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 668KB - Virtual size: 668KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ