BZOA[.]DAL[.]dll | Triage

Sharing

General

Target

BZOA.DAL.dll
Size

12KB
MD5

278895d506739a46824f10552d094d55
SHA1

e29b687b37d00003b2afc3f1c77c6c833fd95b7e
SHA256

1f56c54a1c3865b1d7d4b7c7f04c7903a8da8cc0ef5342657d25d4c5f109d0cb
SHA512

685fa72f9acbd68550c0118a396910236913cce6ce394568fcfc3c6719c600a572969cbc6b1b6a61cb028345fe4a92d2ebbaac15023e48e9e8d8707cccbe13f5
SSDEEP

192:0eTQa0sTKrqetygWbRzvZl5G5WPENbz4/k/EEZzG/lSDMVcYsWcrQ:0eTQMTZeAgaENv4/golSDMaVWI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
BZOA.DAL.dll

Files

BZOA.DAL.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

E:\项目\YHOA_V2\BZOA.DAL\obj\Debug\BZOA.DAL.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ