MshtmlDac[.]dll | Triage

Sharing

General

Target

MshtmlDac.dll
Size

60KB
MD5

5a8515cd86bbc254740e53f4034cf3ff
SHA1

5efe69d5164d9a1474bcc86a02cb3e84afb6d3ce
SHA256

7426b08671a11656c486ea6b1969c61e5b721712daa360d6598212a3c25a9aa8
SHA512

3000c4c721e1ae3309c19bdbbb129afec30b56d57c98edce1c6a950418bdc5506468db07b62ee2459ec47d8f35c020b0fd6a4f494d68aa910cefb4189e39bf4e
SSDEEP

768:7BEJpGTUoyt5JqzhELPLhtZ0UfcoFbkWFy0fjl9TX:7BEnEUoymYPL2U0oFYQy059TX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MshtmlDac.dll

Files

MshtmlDac.dll
.dll windows:6 windows x86 arch:x86

95ee6b6d1326659e66a4d6f96360234e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

MshtmlDac.pdb

Imports

msvcrt

_except_handler4_common
_initterm
malloc
free
_amsg_exit
_XcptFilter
memset

kernel32

GetCurrentProcess
HeapFree
HeapAlloc
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetModuleHandleW
GetProcessHeap
InitializeCriticalSection
GetProcAddress
DeleteCriticalSection
GetVersion
Sleep
UnhandledExceptionFilter
SetUnhandledExceptionFilter

oleaut32

SysFreeString
SysAllocString

Exports

Exports

DllGetClassObject

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 818B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ