ManageSetupClass[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ManageSetupClass.dll
Size

906KB
MD5

08ebaec9136221e91b10f8ae78df3988
SHA1

a427bf583d96c86acf707b5d63cc9733eb03f58c
SHA256

fecdad6732006bae660b1ba9d9f0ef7300bcfea4ccaf7102cf921a46cb5d6d3a
SHA512

0ee44d7c6b8a6f250a5526e1377bbee11be60f6d8e15fef52874f37056ae7053580bd7665dba26790e4a1fa80573ae0512bb2880a4d8b80805be9692a10d972b
SSDEEP

6144:VyBbTX2xKEF1SPrkXAvY2fW1MCz/1ASMPYDm9q0q14bcsJ0cH7tz/YR2LYn4TuIY:VyBUKEgkXkWmSOw14hVYR2xOUdPH2T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ManageSetupClass.dll

Files

ManageSetupClass.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

g:\纳帕科技\打包程序\EManageSetup\ManageSetupClass\obj\Debug\ManageSetupClass.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 904KB - Virtual size: 903KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ